Prudential Ins Co of America
Senior DevSecOps Engineer (Information Technology)
Job Classification:
Technology - Engineering & CloudYour Team & Role
As a DevSecOps Engineer at Prudential, you will play a critical role in shaping and maintaining the company's security posture. Your responsibilities will include providing insightful feedback and advice to our security and GRC teams regarding enterprise standards. You will also be tasked with implementing and managing the necessary tools and policies to ensure that these standards are consistently monitored and enforced. Furthermore, you will also work closely with our development community, gaining a deep understanding of their security challenges. You will be at the forefront of our security efforts, bridging the gap between development and security. This role requires an understanding of security and a focus on execution to safeguard Prudential's digital assets.
Here is What You Can Expect on a Typical Day
• Continuously improve the security postures of applications, containers, cloud, and data
• Advise enterprise teams developing standards for security, quality, and controls
• Implement preventation/detection/remediation policies
• Empower developers to understand and manage their security issues
• Develop process workflows to ensure security issues are properly resolved
• Generate security benchmarks and audit reports
• Partner with security vendors to enhance their products
• Bring awareness to emerging technologies and threats
The Skills & Expertise You Bring
• Bachelor of Computer Science or Engineering or experience in related fields
Strong technical foundation with experience in several of the following:
• 3+ years in software engineering, devops, and/or security
• Experience in one or more of the following languages: Python, Javascript, Go, or Rust
• Experience with Policy-as-Code and querying languages: GraphQL, Rego, Sentinel, HCL, OVAL, CodeQL, datalog, Kusto
• Familiarity with API development and 3rd parties integration
• Familiarity with different types of infrastructure: servers, serverless, containers, cloud, networking, mobile
• Familiarity with system architectures: Monolithic, event-driven, n-tier, microservices, MVC, distributed
Security Domain Knowledge
• Thought leadership and publishing policy or research briefs
• Knowledge of application security specific topics: SDLC, DevSecOps, IAM, cloud/mobile/container security
• Experience managing security tools: SAST, SCA, DAST, xSPM, secret scanners
• Familarity with security data sources and formats: CVE, CWE, CPE, SBOM, VEX, CVSS, CAPEC, SARIF, CycloneDX
• Familarity with industry standard security frameworks: SOC2, NIST, ATT&CK, CIS, ISO 27001/27002
• Familarity with common identity standards and formats: SAML, OAuth, SCIM, LDAP, JWT, Kerberos, OpenID
DevOps Knowledge
• Implemented a DevOps pipeline and experience with tooling
• Understanding of Agile methodologies
• Experience in process engineering and developing workflows
• Strong background with git including merging and branching strategies
• Ability to document user guides, bugs/defects, features, and SOPs
• As-Code Patterns: Infrastructure, Configuration, Security, Policy, Docs, Pipeline, Identity
General Skillsets:
• Collaboration within a scrum team, development community, and decision-makers
• Excellent problem solving, communication, and collaboration skills
• Strong customer service and value-oriented mindset
• Strong written and verbal communication skills, including the ability to effectively communicate complex issues to both technical and non-technical users
• Strong time management and organizational skills
• Strong initiative, interpersonal and problem-solving skills with a strong desire to learn
• Ability to create excellent working relationships within and across teams
Preferred Qualifications
• Financial/Insurance industry experience is a plus, not a must
You'll Love Working Here Because You Can
Join a team and culture where your voice matters; where every day, your work transforms our experiences to make lives better. As you put your skills to use, we'll help you make an even bigger impact with learning experiences that can grow your technical AND leadership capabilities. You'll be surprised by what this rock-solid organization has in store for you.
#LI-IM1
Note: Prudential is required by state specific laws to include the salary range for this role when hiring a resident in applicable locations. The salary range for this role is from $105,100.00 to $156,500.00. Specific pricing for the role may vary within the above range based on many factors including geographic location, candidate experience, and skills. Roles may also be eligible for additional compensation and/or benefits. Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance. In addition, employees are eligible for standard benefits package including paid time off, medical, dental and retirement.
Prudential Financial, Inc. of the United States is not affiliated with Prudential plc. which is headquartered in the United Kingdom.
Prudential is a multinational financial services leader with operations in the United States, Asia, Europe, and Latin America. Leveraging its heritage of life insurance and asset management expertise, Prudential is focused on helping individual and institutional customers grow and protect their wealth. The company's well-known Rock symbol is an icon of strength, stability, expertise and innovation that has stood the test of time. Prudential's businesses offer a variety of products and services, including life insurance, annuities, retirement-related services, mutual funds, asset management, and real estate services.
We recognize that our strength and success are directly linked to the quality and skills of our diverse associates. We are proud to be a place where talented people who want to make a difference can grow as professionals, leaders, and as individuals. Visit www.prudential.com to learn more about our values, our history and our brand.
Prudential is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender identity, national origin, genetics, disability, marital status, age, veteran status, domestic partner status , medical condition or any other characteristic protected by law.
The Prudential Insurance Company of America, Newark, NJ and its affiliates.
Note that this posting is intended for individual applicants. Search firms or agencies should email Staffing at staffingagencies@prudential.com for more information about doing business with Prudential.
PEOPLE WITH DISABILITIES:
If you need an accommodation to complete the application process, which may include an assessment, please email accommodations.hw@prudential.com.
Please note that the above email is solely for individuals with disabilities requesting an accommodation. If you are experiencing a technical issue with your application or an assessment, please email careers.technicalsupport@prudential.com to request assistance.