We are seeking a skilled DevSecOps Engineer to play a crucial role in ensuring our applications and infrastructure are secure and compliant with industry standards.
The ideal candidate will have a strong background in both development and security operations, with a focus on integrating security practices into the DevOps pipeline.
* Implement and manage security tools and processes within the DevOps pipeline.
* Collaborate with development and operations teams to integrate security measures throughout the software development lifecycle.
* Conduct security assessments and vulnerability scans to identify and mitigate risks.
* Develop and maintain security policies, procedures, and documentation.
* Monitor and respond to security incidents and alerts.
* Automate security processes to improve efficiency and reduce manual intervention.
* Stay up-to-date with the latest security trends, threats, and technologies.
Responsibilities
This includes:
1. Security Tools Implementation: Implementing and managing security tools and processes within the DevOps pipeline.
2. Integration Collaboration: Collaborating with development and operations teams to integrate security measures throughout the software development lifecycle.
3. Risk Management: Conducting security assessments and vulnerability scans to identify and mitigate risks.
4. Documentation and Procedures: Developing and maintaining security policies, procedures, and documentation.
5. Incident Response: Monitoring and responding to security incidents and alerts.
6. Automation: Automating security processes to improve efficiency and reduce manual intervention.
7. Staying Up-to-Date: Staying up-to-date with the latest security trends, threats, and technologies.
Key Qualifications include:
* Bachelor's degree in Computer Science, Information Security, or a related field.
* Minimum of 5 years of experience in DevSecOps or a similar role.
* Strong understanding of DevOps practices and tools (e.g., Jenkins, Docker, Kubernetes).
* Proficiency in security tools and technologies (e.g., SIEM, IDS/IPS, vulnerability scanners).
* Experience with cloud platforms (e.g., AWS, Azure, GCP) and their security features.
* Excellent problem-solving skills and attention to detail.
* Strong communication and collaboration abilities.
* Relevant certifications (e.g., CISSP, CEH, AWS Certified Security) are a plus.
TMC is an international high-tech consultancy company that brings expertise to its clients. As such, we help them to be more competitive in an ever more global and faster-changing technological world.
We believe that people are the driving force behind technological innovation. That is why we want to create the best possible conditions for tech talents to thrive in.
As an Employeneur you are part of our TMC family. Next to our outstanding technical expertise, fun and engagement are meaningful parts of our culture.