Sr Engineer 2 - DevSecOps (Remote)

Publix Super Markets, Inc. is the largest privately-owned food retailer in the nation with more than 1,200 stores and more than 200,000 associates throughout the Southeast. We are associate-owned, proud of our family atmosphere, and consistently named as one of the best companies to work for in America. We are largely debt-free and renowned for our financial performance as well as our premier customer service. Publix?s Information Services (I/S) department is located in Lakeland, Florida and Alpharetta, Georgia and employs over 1000 associates. I/S provides the information technology required for all Publix business units including retail stores and all office and warehouse environments. The Publix I/S mission is to maximize the value of information technology to Publix associates and customers. Publix can offer virtual employment for this position in the following states: FL, GA, AL, TN, SC, NC, VA, KY.

Welcome to Publix Technology, the award-winning technical group for Publix Super Markets, Inc., the largest employee-owned company in the nation. Our technology teams of 2100 associates provide cutting-edge, modern solutions to nearly 1400 retail stores and 200,000 internal team members across 8 states. We offer positions at all levels - summer internships, individual contributor roles, to technical leadership across a broad range of technical disciplines. So, whether you are interested in IT security, platform engineering, architecture, software development, or infrastructure - we have a career path for you! Pub Subs are not the only thing we build from scratch. See for yourself why Publix Super Markets, Inc. has been on Fortune's 100 Best Companies to Work For list.

As a Senior DevSecOps Engineer, you will be a subject matter expert, designing, deploying, integrating, and tuning Cloud security technologies. You will lead projects to integrate security solutions while coordinating efforts across teams. This position will also provide security best practices and guidance to for Publix Super Markets, Inc.

Responsibilities:

• Serves as an Information Security Subject Matter Expert (SME) by maintaining knowledge of industry-recognized security technologies and concepts,
• Assist with planning and managing project efforts to define, implement, upgrade, enhance, and maintain DevSecOps solutions (SAST/SCA/IAC/Secret Detection/DAST), CI/CD Security, and cloud-native application protection platform (CNAPP),
• Work closely with stakeholders for data enrichment, data analytics, and reporting using Kusto Query Language (KQL), and Power Bi,
• Create security automation using (PowerShell, Python, etc.) via deployment pipelines for detection, response, and remediation of compliance findings and hardening of cloud infrastructure for Azure and Google Cloud Platform (Google Cloud Platform),
• Play a key role in ensuring our cloud capabilities meet PCI/SOX/HIPAA/PII compliance standards,
• Provide security consultation and guidance on new cloud products, features, and technology decisions,
• Work closely with various team members to refine and enhance the risk strategy for cloud architecture,
• Actively engage and foster relationships with security champions on business and cloud teams to understand their needs and evangelize a ?shift left? DevSecOps culture,
• Participate in on-call rotation

• Must have a bachelor?s degree in computer science, Information Systems, Information Security or other technical/analytical disciplines, or equivalent experience,
• 4 years of demonstrated DevSecOps experience.
• 1 year of experience with Infrastructure-as-Code (Ansible, Terraform, etc.)
• 1 year of experience with CI/CD automation tools (Jenkins, Azure Pipelines, etc.)
• 1 year of experience with Automation and Scripting (PowerShell, Python, etc.)
• Experience with engineering and developing dashboards and reporting using Azure Data Explorer, KQL and Power BI
• Experience with securing Cloud resources using enterprise tools such as Microsoft Defender for Cloud, Prisma Cloud, and/or Google Security Command Center
• Understanding of security requirements, best practices, and execution in various cloud implementation scenarios: IaaS, PaaS, SaaS,
• Knowledge of compliance and regulatory security requirements (SOX, PCI, HIPAA)

• Continued education including additional or advanced degrees in analytical, technical, or business discipline,
• Experience with automation, deployment orchestration, and security configuration management with Terraform, Chef, Puppet, YAML, JSON, PowerShell, BASH, Go, or Python,
• Experience with hardening CI/CD pipelines, containers, container registries, and code repositories, and use of tools such as Jenkins, GitHub, Azure DevOps, etc.,
• Experience deploying and managing container workloads in Kubernetes or OpenShift
• Experience in project management and leading projects to completion,
• Understanding of Agile methodologies,
• Experience monitoring and projecting costs and consumption in an Azure/Google Cloud Platform
• Familiarity with CIS (Azure, Google Cloud Platform) and Microsoft Cloud Security benchmarks,
• Strong interpersonal and communication skills, including experience working with other teams,
• One or more of the following certifications: Security , Cloud , Microsoft Certified DevOps Engineer Expert ? AZ-400, SANS SEC540: Cloud Security and DevSecOps Automation, Microsoft Certified Azure Security Engineer Associate (MCASEA), Certified Cloud Security Professional (CCSP), and/or Certified Information Systems Security Professional (CISSP), ISSAP/ISSEP/ISSMP concentration preferred.

• Employee stock ownership plan that contributes Publix stock to associates each year at no cost
• An opportunity to purchase additional shares of our privately-held stock
• 401(k) retirement savings plan
• Group health, dental and vision plans
• Paid Time Off
• Paid Parental Leave
• Short- and long-term disability insurance
• Tuition reimbursement
• Free hot lunches (buffet-style) at facilities with a cafeteria
• Visit our website to see all of our benefits:

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.