Junior Automation DevSecOps Engineer

Key Responsibilities:

• Review compliance policies and security posture controls across the Infrastructure
• Develop and maintain compliance standards aligned with cloud security best practices (CIS, NIST, ISO).
  
  
• Assist with the management and auditing of user access and privileges to enforce the principle of least privilege.
  
  
• Document findings, recommendations, and action plans in a structured and repeatable way.
  
  
• Apply strong knowledge of RBAC, least privilege, MFA, and identity lifecycle management.
  
  
• Manage auditing and compliance for access control policies across cloud and on-prem environments.
  
  
• Work with Active Directory objects, group policies, trust relationships, and perform LDAP queries for identity and group lookups.
  
  
• Troubleshoot authentication issues across heterogeneous environments.
  
  
• Integrate Linux/UNIX servers with AD using Kerberos, PAM, and NSS.
  
  
• Troubleshoot cross-platform authentication issues to maintain seamless access control.
  
  
• AD Bridge: Install, configure, and troubleshoot; map AD groups and users to UNIX/Linux permissions; manage Kerberos tickets, service accounts, and sudo policies.
  
  
• CyberArk PAM: Work with Vault, PVWA, CPM, and PSM to onboard privileged accounts (Windows, Linux, databases, applications), customize plugins, and troubleshoot session recording, connectors, and vault replication.
  
  

Required Skills & Qualifications:

• Education:
  Bachelor's degree in Computer Science, Information Security, or equivalent experience.
  
  
• Experience:
  1–3 years in DevSecOps, Cloud Security, or related roles.
  
  

Technical Knowledge:

• Cloud Platforms:
  AWS/GCP fundamentals (IAM, EC2, S3, VPC).
  
  
• Security Tools:
  Prisma Cloud (CSPM, Compute), CyberArk PAM
• IAM & Directory Services:
  Active Directory, LDAP, RBAC, MFA, Kerberos.
  
  
• Compliance:
  Familiarity with CIS Benchmarks, NIST 800-53, SOC2.
  
  
• Linux/UNIX Administration:
  Authentication configuration, PAM/NSS integration.
  
  

Preferred Skills:

• Experience with automation/scripting (Python, Bash, Terraform).
  
  
• Familiarity with CI/CD pipelines (Jenkins, GitLab CI/CD, ArgoCD).
  
  
• Basic understanding of container security (Docker, Kubernetes).
  
  

Soft Skills:

• Analytical and problem-solving mindset.
  
  
• Clear written and verbal communication for documentation and reporting.
  
  
• Ability to work collaboratively with cross-functional teams.