DevOps Engineer – OpenJDK & OpenSSL Vulnerability Patching

Overview

We are seeking a skilled DevOps Engineer with expertise in OpenJDK and OpenSSL vulnerability patching to enhance the security and stability of our infrastructure. The ideal candidate will be responsible for identifying, assessing, and mitigating security vulnerabilities in OpenJDK and OpenSSL, ensuring compliance with industry standards and best practices.

Responsibilities

Key Responsibilities:

• Vulnerability Management: Identify, assess, and remediate security vulnerabilities in OpenJDK and OpenSSL across production and development environments.
• Patch Deployment: Apply patches, updates, and security fixes for OpenJDK and OpenSSL while minimizing downtime and ensuring system stability.
• Automation & Scripting: Develop and maintain automation scripts (e.g., Bash, Shell Scripting, Python, Ansible, Terraform) to streamline patching and deployment processes.
• Monitoring & Compliance: Implement monitoring tools and security controls to ensure continuous compliance with industry standards (CIS, NIST, ISO 27001).
• CI/CD Pipeline Integration: Ensure OpenJDK and OpenSSL updates are seamlessly integrated into CI/CD pipelines using tools like Jenkins, GitLab CI, or Azure DevOps.
• Incident Response: Work with security teams to address vulnerabilities, respond to security incidents, and conduct root cause analysis.
• Documentation & Reporting: Maintain detailed documentation of security patches, system changes, and remediation efforts.
  
  
  

Requirements

Required Skills & Experience:

• xx years of experience in a DevOps, Site Reliability Engineering (SRE), or System Administration role.
• Strong experience with patch management and security updates for OpenJDK and OpenSSL.
• Proficiency in Linux administration (Ubuntu, RHEL, CentOS) and command-line tools.
• Hands-on experience with configuration management and automation (Ansible, Puppet, Chef, or Terraform).
• Familiarity with cloud platforms (AWS, Azure, GCP) and containerization (Docker, Kubernetes).
• Experience with CI/CD tools (Jenkins, GitLab CI, Azure DevOps) and version control (Git).
• Knowledge of network security and encryption protocols (TLS, SSL).
• Strong scripting skills in Bash, Python, or PowerShell.
• Understanding of security compliance frameworks (CIS, NIST, ISO 27001, PCI-DSS).
• Collaborate closely with Dev teams and work on remediation solutions by understanding application architecture .Preferred Qualifications:
• Certifications such as AWS Certified DevOps Engineer, CKA (Certified Kubernetes Administrator), RHCE (Red Hat Certified Engineer), or CISSP.
• Experience with SIEM tools (Splunk, ELK, or Datadog) for security monitoring.
• Experience working in Telecom industiries