KPMG IT Service OOD is an IT service provider with a mission to digitalize the core business of the KPMG network member firms and their clients. We employ more than 500 people in Sofia and deliver the full spectrum of IT services to our clients, including SAP solutions, Software Engineering, Application & Platform Operations, Cloud and Infrastructure.
Our Cloud Services unit is focused on designing, building, securing and managing cloud native & hybrid platforms for the KPMG group of member firms, as well as providing cloud advisory and engineering services to external clients.
Your Responsibilities:
- Responsible for understanding, researching, designing, and developing DevSecOps security focused solutions, technical and reference architectures
- Lead, develop and contribute to Service deliverables with a security focus on Applications, cloud and cloud-native solutions
- Responsible for aligning and translating business requirements into secure solutions, designs and reference architectures for applications and products
- Perform as a subject matter professional on cloud technologies (and cloud technology security), application security (and application security solutions) and containerization and orchestration security with responsibilities to coach
- Participate and act as a guardian of global standards and standard infrastructure services and solutions
- Define, document and present solution designs
- Performs timeline, effort and budget estimations for developing/implementing security solutions
- Lead the drive for technology adoption and innovation
- Create and review software architectures from security standpoint
- Work with the Team Leader to define skill matrix and evaluation methods for the security team staffing
What you bring in:
- 5 to 8 years of relevant IT and IT security experience, with a growing focus in DevSecOps
- Experience in cloud security architecture design, documentation, and better practices; understanding of enterprise architecture frameworks
- Experience in application security and DevSecOps tools (e.g. SAST, DAST, SCA). Knowledge and experience in implementing security in SDLC
- Experience and knowledge of containers and container orchestration solutions (e.g. Kubernetes, EKS, AKS, GKS)
- Automation knowledge and experience with scripting language (e.g. Python, Bash)
- Knowledge and experience with infrastructure as code (e.g. Terraform)
- Knowledge in DevOps best practices and security of CI/CD pipelines.
- Microsoft Azure Architect Certification and Microsoft Azure Security Expert Certification
- AWS Solution Architect Certification and AWS Security Certification
- GCP Certification: Cloud Architect and Cloud Security Engineer
- Understanding and experience using various security related exploits and tools
- Experience in Azure or AWS or CGP
- Experience with designing and documenting complex environments
- Knowledge in Agile methodologies
- Strong presentation skills
- Fluency in English
What we offer:
- The chance to work in a top talent team
- Attractive remuneration
- Build knowledge in cutting-edge technologies
- Opportunity for continuous training, learning and certification
- Experience in an international and multicultural organization
- Work on challenging projects with clients in various industries around the globe
- Modern office environment
- Additional health insurance
- Life insurance
- 50+ benefits and services to choose from
- Hybrid working policy
