Strength in Trust
OneTrust is the trust intelligence cloud platform organizations use to transform trust from an abstract concept into a measurable competitive advantage. Organizations globally use OneTrust to enable the responsible use of data while protecting the privacy rights of individuals, implement and report on their cyber security program, make their social impact goals a reality, and create a speak up culture of trust. Over 14,000 customers use OneTrust's technology, including half of the Global 2,000. OneTrust currently ranks #24 on the Forbes Cloud 100 list of top private cloud companies in the world and employs over 2,000 people in regions across North America, South America, Asia, Europe, and Australia.
The Challenge
We are hiring a Principal DevOps Engineer to play a critical role in ensuring the security, reliability and efficiency of our software development and deployment processes. This person will contribute to productizing new software by developing standards, automation and processes that will promote a secure, compliant, and up to date infrastructure and suite of tools. You will collaborate closely with development, operations and security teams to integrate security practices into all aspects of our DevOps pipelines.
Your Mission
- Manage security vulnerability remediation, patching and updating of our development environments, tooling, and handoff of rollout to production teams as needed.
- Develop and maintain an understanding of the software development and deployment pipeline process and life cycle at OneTrust.
- Implement security measures in pipelines to ensure the secure and resilient delivery of the Trust Intelligence Platform.
- Support application infrastructure and platform tools to ensure the OneTrust software is optimized for security, performance, and reliability.
- Design, implement and manage security controls for cloud-based infrastructure and applications.
- Collaborate with development, security, and operations teams to integrate security best practices into our entire SDLC.
- Participate in regular security assessments, penetration testing, and vulnerability scanning to identify and address security vulnerabilities.
- Perform and automate system administration services including installation, configuration, maintenance, and disaster recovery.
- Provide guidance and support to development teams on secure coding practices and security requirements.
- Identify existing and emergent issues that indicate security threats and reliability problems, working with development, security, and operations teams to help drive resolution.
- Maintain Security SLA compliance for DevOps supported tools and services.
- Someone with strong analytical and problem-solving skills including the ability to quickly identify trends and patterns and ability to identify risk potential and appropriate mitigation strategies.
- Self-motivated and technically curious, able to leverage self-directed time and able to prioritize and manage multiple tasks
- Ability to work collaboratively across teams and different disciplines.
- Someone with good verbal and written interpersonal skills – you are able to clearly and effectively articulate ideas and direction of projects.
- Passionate for high quality work and attention to detail
- Strong understanding of DevOps and Security principles and methodologies
- Bachelor's degree in Computer Science, Engineering, or related technical or business field
- 8+ years in DevOps or Security related field.
- Ability to demonstrate expertise in one or more related technical areas.
- Mentoring and leading cross functional technology work from idea to deployment.
- Thorough knowledge of automation/configuration management using Puppet, Chef, Ansible or an equivalent
- Proficient in container management using Docker and Kubernetes
- Working on a public facing high-traffic production Web application with both User-to-System and System-to-System use cases.
- An expert understanding of code and script (Go, Python, Shell and/or Ruby)
- Experience with SQL and NoSQL databases
- Agile development (Scrum, XP, or Pair Programming) experience
- Ability to use a wide variety of open-source technologies and cloud services (Azure, Google Cloud Platform, or Amazon Web Services)
- Deep understanding of Security and DevOps tools and platforms like GitLab, Bitbucket, SonarQube, Jenkins, ArgoCD, Ansible, Snyk, Wiz, Veracode or GitHub.
- Certificates in Azure, CISSP, CEH or other cloud or security specialty
- Experience working with distributed teams across time zones.
- Work experience with GitLab and Terraform.
Salary Range
$135,000—$202,500 USD
Where we Work
OneTrust embraces a hybrid working model. Our Working@ OneTrust initiative is our way of clarifying where we hire, how we work together, and where we’re located in that hybrid model.
The underlying “why” for Working@ is that we are intentional about the culture that we want to create together. That includes bringing teams together, in-person, throughout the year to collaborate, build connections, learn from each other, and celebrate our wins toFinish Stronger .
We are committed to aflexible approach informed by a set of guiding principles. You’ll see that reflected in our worker designations: “Office-flex” and “Location-flex”.
- Office-flex: Like a traditional hybrid model, OneTrust “Office-flex” employees may be asked to work in an office periodically if they are within a commutable distance to a OneTrust office. This includes coming into the office for our Company Kickoff, Company All Hands, and other larger company events. Beyond that, we give our leaders and teams the flexibility to set additional guidelines based on the nature of your role.
- Location-flex: Similar to other companies’ remote policies, for OneTrust “Location-flex" roles, you will primarily work from your home office location. However, you may be required to travel to our OneTrust offices or customer sites periodically based on the nature of your role.
Benefits
As an employee at OneTrust, you will be part of the OneTeam. That means you’ll receive support physically, mentally, and emotionally so that you can do your best work both in and out of the office. This includes comprehensive healthcare coverage, flexible PTO, equity stock options, annual performance bonus opportunities, retirement account support, 14+ weeks of paid parental leave, career development opportunities, company-paid privacy certification exam fees, and much more. Specific benefits differ by country. For more information, talk to your recruiter or visit onetrust.com/careers.
Resources
Check out the following to learn more about OneTrust and its people:
- OneTrust Careers on YouTube
- @LifeatOneTrust on Instagram
You have the right to have your personal data updated or removed. You also have the right to have a copy of the information OneTrust holds about you. Further details about these rights are available on the website in our Privacy Overview. You can change your mind at any time and have your personal data removed from our database. In order to do this you must contact us and let us know you wish to be removed. The request should be made on the Data Subject Request Form.
Our Commitment to You
When you join OneTrust you are stepping onto a launching pad — the countdown has begun. The destination? A career without boundaries working alongside a diverse and inclusive crew who is passionate about doing meaningful work. As a pioneer, your voice and expertise will help chart the direction of an entirely new industry — Trust. Our commitment to putting people first starts with you. Your growth is part of the mission. Our goal is to give you the power to embark on the next phase of your uniquely, unique career
OneTrust provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by local laws. #J-18808-Ljbffr