Sr. DevSecOps Developer Associate - Hyundai Capital Bank Europe : Job Details

Who We Are

Through our service brands Hyundai Motor Finance, Genesis Finance, and Kia Finance, Hyundai Capital America offers a wide range of financial products tailored to meet the needs of Hyundai, Genesis, and Kia customers and dealerships. We provide vehicle financing, leasing, subscription, and insurance solutions to over 2 million consumers and businesses. Embodying our commitment to grow, innovate, and diversify, we strive to reimagine the customer and dealer experience and launch innovative new products that broaden our market reach. We believe that success comes from within and are proud to support our team members through skill development and career advancement. Hyundai Capital America is an Equal Opportunity Employer committed to creating a diverse and inclusive culture for our workforce. We are a values-driven company dedicated to supporting both internal and external communities through volunteering, philanthropy, and the empowerment of our Employee Resource Groups. Together, we strive to be the leader in financing freedom of movement.

We Take Care of Our People

Along with competitive pay, as an employee of HCA, you are eligible for the following benefits:

· Medical, Dental and Vision plans that include no-cost and low-cost plan options

· Immediate 401(k) matching and vesting

· Vehicle purchase and lease discounts plus monthly vehicle allowances

· Paid Volunteer Time Off with company donation to a charity of your choice

· Tuition reimbursement

What to Expect

The Sr. DevSecOps Developer Associate will be responsible for driving secure software development practices and integrating security within our CI/CD pipelines. This role will play a critical part in automating security validations, code scanning, and enhancing the efficiency of development processes while ensuring compliance with best security practices.

What You Will Do

1. Secure Software Development:

· Maintain and manage source code repositories, ensuring proper cataloging and accessibility.

· Automate code validation, testing, and security compliance checks.

· Utilize Rancher and k8s CLI tools to manage Kubernetes environments and ensure security best practices in container orchestration and monitoring/observability.

· Ensure version control best practices and secure coding guidelines are enforced.

· Develop and optimize CI/CD pipelines using tools like Jenkins, GitHub Actions, and Bitbucket Pipelines CI/CD to ensure automated deployments and security integration.

· Implement system integrations to support IAM, RBAC, and SSO for user access and provisioning.

2. Security Validations:

· Ensure the security of the software development process.

· Implement secure code scanning practices using tools like Bitbucket, GitHub, GitLab, and integrate them within CI/CD workflows.

· Enhance DevSecOps practice by embedding security controls in automated pipelines.

· Conduct automated security testing using tools like NeuVector, Artifactory X-Ray to identify vulnerabilities.

· Implement artifact repositories using JFrog, Artifactory, ensuring secure package management and distribution.

3. Compliance:

· Ensure compliance with secure software development practices and regulatory requirements.

· Collaborate with teams to conduct continuous security assessments and improve overall infrastructure security.