Senior DevSecOps Software Engineer (REF : 195)

Pour un de nos clients, situé à Luxembourg Kirchberg, nous recherchons un Senior DevSecOps Software Engineer

Key Responsibilities:

• Design, build, and implement CI/CD pipelines using Azure DevOps, ensuring adherence to security best practices and compliance standards.

• Design, develop, and maintain automation using Ansible roles and playbooks.

• Automate provision and management of RHEL Unix systems, ensuring seamless integration within a heterogeneous environment.

• Manage IT cloud operations with public cloud providers, preferably Azure.

• Utilize containerization technologies such as Docker and Podman to streamline application deployment and management.

• Automate complex processes using scripting languages like Bash or PowerShell.

• Conduct Static Application Security Testing (SAST), Software Composition Analysis (SCA), vulnerability scanning, and manage Software Bill of Materials (SBOM) and SBOM signing.

• Implement and manage security tools for Cloud-Native Application Protection Platforms (CNAPP) and DefectDojo.

• Handle secret management solutions, preferably HashiCorp Vault.

• Implement OWASP security guidelines and best practices to ensure robust application security.

• Collaborate with cross-functional teams to ensure adherence to Agile and ITIL processes.

Qualifications:

• Solid experience building and implementing CI/CD pipelines using Azure DevOps.

• Strong expertise in Ansible for automation and configuration management.

• Knowledge on Linux systems.

• Proficiency in scripting with Bash or PowerShell to automate complex processes.

• Experience with Static Application Security Testing (SAST), Software Composition Analysis (SCA), vulnerability scanning, Software Bill of Materials (SBOM), and SBOM signing.

• Familiarity with security tools for Cloud-Native Application Protection Platforms (CNAPP) and DefectDojo.

• Knowledge of OWASP security guidelines and best practices.

• Hands-on experience with secret management solutions, preferably HashiCorp Vault.

• Good understanding of Agile and ITIL processes.

• Excellent problem-solving skills and attention to detail.

• Strong communication and collaboration skills.

• Ability to work independently and as part of a team.

Preferred Skills:

• Proactive and self-motivated with a passion for continuous learning and improvement.

• Experience in IT cloud operations with public cloud providers, preferably Azure.

• Experience in containerization technologies such as Docker and Podman.