#1 Job Board for tech industry in Europe

  • Job offers
  • Salary calculator
  • Top Companies
  • Geek
    • DevSecOps Engineer
    DevOps

    DevSecOps Engineer

    Experis Manpower Group

    Łódź
    Type of work
    Full-time
    Experience
    Mid
    Employment Type
    B2B
    Operating mode
    Remote

    Tech stack

      CI/CD

      regular

      Docker

      regular

      Azure DevOps

      regular

      IaaS

      regular

      SSDLC

      regular

    Job description

    Online interview

    DevSecOps Engineer


    Tasks: 

    • Collaborate with design and development teams to implement security policies from the early stages of SDLC 
    • Support migration and transformation projects 
    • Create and manage CI/CD processes, automating security steps to increase efficiency and scalability 
    • Automate security tasks in DevOps processes using tools such as Ansible, Azure DevOps, Jenkins, and GitLab, supporting continuous improvement 
    • Conduct security assessments of hybrid solutions and support teams in the area of ​​public cloud security (Azure, GCP, AWS) 
    • Secure public cloud environments and microservices-based environments (AKS, GKE, EKS, Red Hat OpenShift) 
    • Analyze the security of API, application, or IaC code and harden DevOps environments by integrating robust security elements 
    • Design, develop, and improve CI/CD environments by implementing security tools (SonarQube, DefectDojo, Fortify, Checkmarx, Veracode, Checkov, Semgrep, Nessus, Aqua Security), ensuring continuous development and innovation 


    Requirements: 

    • Knowledge or interest in the area of ​​cybersecurity supported by several years of experience in IT or in a DevOps role 
    • Experience with one of the leading clouds: Azure, GCP or AWS 
    • Knowledge of CI/CD processes and tools such as Azure DevOps, Jenkins or GitHub 
    • Knowledge of web application security (OWASP TOP 10) and secure coding principles, as well as knowledge of popular attack methods (XSS, CSRF, SQL injection) and frameworks such as MITRE 
    • Practical experience in working with on-prem, IaaS, PaaS, SaaS models 
    • Knowledge of containerization (Docker) and infrastructure platforms based on containerization, such as Kubernetes, OpenShift, Anthos 
    • Knowledge of SAST, DAST, SCA and their implementation in CI/CD processes and topics of authorization, authentication and session management (SAML, OAuth, SSO) 
    • Understanding of the SSDLC process and its elements and knowledge of Rest API technology and the API Gateway concept 


    Offer: 

    • 100% remote work 
    • MultiSport Plus 
    • Group insurance 
    • Medicover Premium 
    • e-learning platform 

    Check similar offers