The Role:

We are helping our client look for a DevSecOps Engineer with a focus on securing containers, orchestration, CI/CD pipelines and cloud infrastructure to join our growing team. The successful candidate will have an essential role in ensuring the information security of our business.

You will be working in a team that embraces DevSecOps culture and strives to secure cloud infrastructure using cutting-edge technologies.

The main responsibilities of the position include:

• Conduct assessments and make recommendations to ensure that appropriate controls are in place
  
  
• Participate in efforts that shape the company’s security policies, procedures, and standards for use in all DevSecOps phases
  
  
• Investigate and implement security best practices for containers, container images, and Kubernetes (AWS EKS) in all phases
  
  
• Configure and maintain platforms for workload protection
  
  
• Liaise with Cloud DevOps and Platform Engineers to investigate and implement security best practices for network security and access control in containerized environments, and suggest security improvements to the CI/CD process
  
  
• Investigate and implement security best practices for GitLab and Jenkins platforms, pipelines, and runners
  
  
• Liaise with developers to implement security best practices
  
  
• Create, develop, and implement solutions to address infrastructure and security requirements Identify and apply automation to improve security and reduce repetitive work
  
  Main requirements:
  
  
• BSc/MSc in Information Security or any other related field
  
  
• Minimum 5 years of working experience in Information Security with a focus of at least 2 years in DevSecOps
  
  
• Strong experience in securing containers, container images, and Kubernetes (preferably AWS EKS)
  
  
• Experience with securing GitLab and Jenkins platforms, pipelines, and runners
  
  
• Strong experience with Cilium or Kubernetes network policies
  
  
• Experience with Infrastructure as Code using Terraform and Policy-as-Code
  
  
• Technical knowledge in AWS security and networking services (IAM, CloudTrail, VPC, EC2, EKS, ELB)
  
  
• Ability to work autonomously with minimum supervision and to integrate well within a team
  
  
• Excellent problem-solving skills and the ability to quickly learn new technologies in depth
  
  The following will be considered an advantage:
  
  
• Certified Kubernetes Security Specialist, Certified Kubernetes Administrator, and AWS Certified Security - Specialty certificates
  
  
• Hands-on experience with Prisma Cloud for workload protection
  
  
• Experience with Helm, Istio, and scripting languages preferably in Python
  
  Benefit from: Attractive remuneration package plus performance related reward Intellectually stimulating work environment Continuous personal development and international training opportunities