DevSecOps Architect

Our Client is a global provider of precision instruments and services. Renowned as an innovation leader, its solutions are essential in critical R&D, quality control, and manufacturing processes across various industries, including life sciences, food, and chemicals. The company operates worldwide, with a culture defined by innovation and an international outlook.

We are currently seeking a DevSecOps Architect. The successful candidate will be pivotal in developing and implementing a comprehensive cybersecurity strategy for the organization. This role will focus on integrating security into DevOps processes and ensuring the protection of data and systems from cyber-attacks and data breaches.

Key Responsibilities

• Collaborate with development and operations teams to integrate security into DevOps processes, ensuring the secure deployment of applications and infrastructure.
• Design and architect secure, scalable infrastructure solutions that adhere to DevOps principles and industry standards.
• Develop and maintain security policies, standards, and procedures, ensuring compliance with regulatory requirements.
• Conduct maturity modeling to assess the development team's DevOps process maturity.
• Implement and manage security testing tools and processes, including vulnerability scanning, penetration testing, and code analysis.
• Work with cross-functional teams to incorporate security measures into the software development lifecycle.
• Stay current with emerging security threats, trends, and technologies.
• Communicate security risks and issues to senior management and stakeholders.
• Serve as a subject matter expert and advocate for application security best practices.
• Provide guidance and support to IT teams and departments to effectively implement security measures.

What You Need to Succeed

• Bachelor’s degree in Computer Science, Information Systems, or a related field.
• Experience in software development and application security architecture and design.
• Strong technical knowledge of DevOps tools and processes, network security, cryptography, application security, and cloud security
• In-depth understanding of web application architecture, design, and development.
• Knowledge of software development requirements for embedded systems.
• Comprehensive understanding of security principles and practices, including OWASP Top 10, CWE Top 25, and SANS 25.
• Familiarity with software development tools such as Git, JIRA, and Eclipse (experience with Synopsys tools like Coverity, Blackduck, and CodeDX is a plus).
• Awareness of industry standards and regulations such as PCI DSS and GDPR.
• Excellent analytical and problem-solving skills, capable of identifying and mitigating potential security risks.
• Strong communication and interpersonal skills for effective collaboration with internal stakeholders and external vendors.
• Relevant industry certifications such as CISSP, CISM, CSSLP, or CEH are advantageous.

The Offer

• Stable employment conditions with a contract of employment.
• Annual performance bonus.
• Hybrid work model (2 days in the office).
• Comprehensive Medicover medical care with a basic dental package.
• Life insurance with options for family member coverage.
• Medicover sport card.
• Access to language courses.
• A supportive environment for your initiatives, charity, and CSR actions.
• A diverse and inclusive workplace.

* This recruitment process is included in Cpl Gold Referral Program. You can receive PLN 5,000 bonus for recommending an IT specialist! Do you know someone who is a perfect fit for this job offer? Do not wait and send us your candidate's CV now using the form available at this link - recommend!

**Presented salary ranges according to Cpl CEE Salary Guide 2023 and other data available on the market.