Company Description
Here at esure, we're no strangers to change. As one of the industry leaders in the insurance business, striving to become a world class digital insurer, we're getting ready for more. It's creating great new opportunities for innovative and talented industry professionals to join us at a pivotal point in our development.
Job Description
We currently have a fantastic opportunity for a DevSecOps Engineer to join our team. You will be responsibility for protecting esure's information systems and networks from security breaches and cyber threats by responding to security events, conducting improvements and assessments.
What will my role entail?
- Key member of a multi-disciplined, high performing DevSecOps team accountable for managing the security and networking integration across esure.
- Network Firewall Operations: Setting up new firewalls and firewall rules in Fortigates
- Security Integration: Embedding security tools and practices into the DevOps workflow specifically on the CI/CD pipelines to automate security checks.
- Vulnerability Management: Managing software vulnerabilities using tools such as Wiz, Sonarcloud, Cobalt and other DevSecOps tools
- Configuration Management: Detecting cloud and Kubernetes misconfiguration and building correct configuration guidance for DevOps and Developers using tools like Terraform
- Reporting: Build reports detailing KPI trends, and the overall security health of the organisation
- Training and Education: Provide advice and training to staff to raise awareness of information security and promote good security practices
Qualifications
- demonstrated ability within a Networks team
- Ability to setup and maintain Fortigate NGFW
- Committed to upskilling in all facets of cloud including, networking, security, infrastructure setup and management.
- Ability to analyse and generate Network Packet Captures
- Comfortable setting up and maintaining IPSec VPNs and SSL VPNs
- Proficient in resolving network issues
- Ability to quickly research and learn new DevSecOps tools and techniques
- Solid grasp of cloud platforms and their network and security features
- Exposure to at least one programming/ infrastructure as code language e.g. Python and Terraform
- Basic understanding and hands on experience in Cloud Networking
- Basic knowledge of Cloud architectures and willingness to learn more about cloud
- Experience working on technical projects within a cross functional team.
We'd also like to hear if you have...
- Familiarity with security tools such as static code analysis (SAST), dynamic analysis (DAST), and vulnerability scanners
- Past experiences of security automation including roles like security engineering and security operations. Past security internships are also considered
- Knowledge of containerization and orchestration tools like Docker and Kubernetes
- Superb communication skills, both written and oral, with the ability to communicate security-related concepts to a broad variety of technical and non-technical staff
- Hands-on experience with AWS, Azure, plus Windows and Linux operating systems
We'll help you gain...
- Professional growth and progression opportunities include roles such as Security Architecture and Senior DevOps or Senior DevSecOps Engineer
Additional Information
This is your opportunity to be at the forefront of our game-changing journey and be part of something truly special! And to top it off, here are some perks to life at esure...
- A competitive salary that recognises your skills and potential
- A bonus scheme that celebrates your contribution to esure's success
- Discounts on our insurance products, for you and your family
- 25 days annual leave, plus 8 flex days to be taken as and when suits you
- Benefits just for you: our hub – My Benefits Box – is loaded with perks to choose from, so you can build a personal toolkit to support your health, wellbeing, lifestyle, and finances.
- Grow your career with us: whatever your goals, we'll support you with hands-on training, mentoring, a LinkedIn Learning licence, access to our exclusive Academies, regular career conversations, and expert partner resources from the likes of Women in Data and Women in Tech.
- Join our communities: our networks give you the chance to connect, learn and share with like-minded colleagues across the business – for work and play. So, it's no surprise our people consistently rate ‘making friends at work' one of the highest scorers in our colleague engagement survey
- More flexibility for you: we're a proud supporter of the ABI's Make Flexible Work campaign and welcome you to ask about the flexibility you need. Our hybrid working approach also puts you in the driving seat of how and where you do your best work.
- Live a healthy lifestyle: we offer lots of support, so you feel like the best version of yourself – like specialist advice through our employee assistance programme, wellbeing classes, access to the My Health Advantage app, our Big Team Challenge, and learning sessions on topics like menopause.
- A helping hand to do your bit for a greener and safer world: driving good in the world couldn't be more important to us. That's why we encourage colleagues to use volunteering days to support their local communities and have lots of initiatives to help you live a greener lifestyle.
- Everyday appreciation: praise from your colleagues means the world! Our social recognition tool makes it easy to give colleagues the praise they deserve, and you could even be shortlisted for a company-wide ACE Award.
We understand some people may not apply for jobs unless they tick every box. If you are excited about joining us and think you have some of what we are looking for, even if you're not 100% sure we would love to hear from you.