About the company
Modus Create is a digital product group that accelerates digital transformation. We use high-performing teams, emerging technology, and “new school” product development tools and methods to accelerate business outcomes. We support our clients across four core delivery areas: business and product strategy consulting, customer experience, cloud services, and Agile software delivery. Driven by a team of world-class talent, we have been recognized by the Inc 5000 list of Fastest Growing Private Companies nine years in a row, the Washington Business Journal list of Fastest Growing Companies in the Washington, DC area three years in a row, and a top company for remote work by FlexJobs. We’re also an official partner to Atlassian, AWS, Cloudflare, GitHub, InVision, Ionic Framework, and Vue.js! Founded in 2011, with our HQ in Reston, Virginia and offices in Costa Rica, Romania and France, Modus has employees all over the world. Based on the model of an open source team, Modites work remotely and are located across the globe. This has allowed us to hire the best talent in the world, no matter where they live. Our highly collaborative, autonomous, and effective working environment is fueled by a team unified by a love of continuous learning. Our years of thought leadership including books, whitepapers, blog posts, conferences and MeetUp talks, demonstrate our commitment to sharing what we’ve learned. We encourage every Modus employee to do the same. Our company is a platform for the growth of our employees. Through working with our distributed team of experts on challenging projects, every person that joins the Modus team can expect to continue growing and learning every day. This is your chance to be part of building something great.
Job Summary
About You
đź“ŤExperience Level: Senior
đź“ŤYou have experience in analyzing existing DevOps systems from a security and best practices perspective and proposing recommendations for improvements.
đź“Ť Your background will include experience with networking (Windows and Linux) and web hosting and how this translates to the cloud and Infrastructure as Code.
đź“ŤYour focus will be on Amazon Web Service systems.
📍You’ll have experience with multi-account AWS infrastructure and good governance mechanisms.
đź“ŤYou have expert knowledge of IAM, hybrid on-premises and cloud systems, and how AWS native security solutions (GuardDuty, SecurityHub, Macie) factor into the mix.
đź“ŤYou have an interest in securely provisioning these services and applications that run in AWS through automation.
📍You’ll be familiar with concepts such as OWASP Top 10 and MITRE ATT&CK. You understand DevOps processes and how infrastructure as code can be used to build out cloud systems.
đź“ŤYou have extensive experience with Terraform and scripting in Python.
đź“ŤYour background may have included working as one or more of: a security analyst, Blue Team, DevOps Engineer, System Administrator or architecting secure multi-cloud systems in the past.
📍You know what Jenkins and CircleCI are. You may have used Ansible, Puppet or Chef. You’re familiar with Bitbucket and integrating security tooling. You’ll understand concepts around DevSecOps pipelines including static analysis, secret scanning and container vulnerability scanning. You augment your knowledge of cloud systems by using tools such as ScoutSuite for infrastructure and vulnerability detection.
📍You’ll be familiar with building pipelines that include tools such as Veracode, Lacework, Blackduck, SonarQube and git-secrets. You understand how linting, unit tests and code coverage fit into a DevOps pipeline . You’ll also be familiar with cloud-native DevOps and security options. As well as being AWS focused you’ll be a generalist when it comes to information security. You attend conferences, and even better talk/volunteer/help organize them. You enjoy CTF challenges, reading or listening to podcasts on the subject. You are happy presenting to clients including senior management and have good written skills for compiling findings and recommendations reports.
📍You won’t mind expanding your skill set, and getting some exposure to Azure and GCP, especially to help understand how these factor into multi-cloud DevOps solutions.
You love learning and understand that software is an ever-evolving world. You enjoy playing with new tech and exploring areas that you might not have experience with yet. You are self-driven, self-learner willing to share knowledge and participate actively in your community. đź“ŤHaving overlap with your team is critical when working in a global remote team. Modus requires all team members to overlap with EST hours daily. In addition, reliable high speed internet is a must.
Things You Might Do
đź“ŤModus is a fast-growing, and remote-first company, so you'll likely get experience on many different projects across the organization. That said, here are some things you'll probably do: đź“Ť Give back to the community via open source and blog posts đź“ŤTravel and meet great people- as part of our remote-first lifestyle, it's important that we come together as needed to work together, meet each other in person and have fun together. Please keep that in mind when you apply. đź“ŤTeach and be taught: Modus creates active teams that work in internal and external projects together, giving opportunities to stay relevant with the latest technologies and learning from experts worldwide đź“ŤInteract directly with internal and external clients to represent Modus and its values.