Senior DevSecOps Engineer

Description

Our partner's mission is to enable its customers to protect and save lives, accelerate justice, and preserve privacy in communities around the world. They are a global leader in Digital Intelligence solutions for the public and private sectors, empowering organizations to master the complexities of legally sanctioned digital investigations by streamlining intelligence processes.

Responsibilities

• Collaborate with cross-functional teams to integrate security practices into the entire software development lifecycle.
• Automate security testing, vulnerability scanning, and compliance checks into the continuous integration and continuous deployment (CI/CD) pipeline.
• Design and implement security controls and compliance measures for cloud infrastructure and applications.
• Stay up-to-date with the latest security threats, technologies, and best practices, and ensure the team is informed about relevant developments.
• Develop and maintain documentation related to security policies, procedures, and best practices.
• Evaluate and recommend security tools and technologies to enhance the organization's security posture.
• Participate in security audits and compliance assessments as required.
• Keeping up-to-date on the latest security threats and best practices
• Monitor and respond to security incidents, conduct root cause analysis, and implement corrective actions.
• Create POC for a new tool. 

Requirements

• Solid understanding of DevOps principles and practices, including CI/CD pipelines.
• Proficiency in scripting and automation (e.g., Python, Bash, PowerShell) to facilitate security tasks.
• Strong knowledge of cloud platforms and specifically AWS, and their security controls.
• Familiarity with containerization and orchestration technologies (e.g., Docker, Kubernetes) and their security implications.
• Experience with security testing tools and methodologies, such as static analysis, dynamic analysis, and penetration testing.
• Knowledge of security frameworks and standards (e.g., OWASP, NIST, CIS).
• Excellent communication skills to collaborate effectively with technical and non-technical stakeholders.
• Relevant security certifications (e.g., CISSP, CEH, CompTIA Security+) are a plus.
• Experience with compliance standards (e.g., GDPR, HIPAA, PCI DSS) is desirable.

• Ability to work in an agile and fast-paced environment, adapting to changing priorities.
• Bachelor's degree in computer science, engineering, or a related field
• 3+ years of experience in software development
• 2+ years of experience in security
• 5+ years experience in DevOps and tools and technologies
• Experience with automation
• Strong understanding of security principles and best practices
• Excellent problem-solving and analytical skills
• Excellent communication and teamwork skills

Benefits

• Private dental subscription
• Gym subscription
• Bookster
• Vouchers/bonuses for special events (birthday, Christmas, Easter, etc)
• Meal vouchers of 35 RON/working day
• Ability to work with a global company and immerse in a variety of international projects with different cultures within the IT industry
• Access to cutting-edge and state-of-the-art technologies current with the everyday evolvement of technologies
• Development opportunities with free access to over 3000+ training courses and peer-to-peer mentoring support