Expert in DevSecOps

Expert in DevSecOps

Location : Brussels

Working model : Near-Site (Hybrid) 

Tasks

• Plan, implement, upgrade DevSecOps pipelines
• Facilitate the continuous delivery of IT applications by using Application Lifecycle Management and automation tools.
• Promote the usage of DevSecOps methodologies for IT projects.
• Architect and design API Security, Container Security, Cloud Security.

Knowledge and skills

• Experience with large, enterprise-level multi-user Information Systems.
• Good knowledge in establishing and managing deployment pipeline and release management.
• Good knowledge with DevOps container or serverless /orchestration tools (i.e.: Docker, Ansible, Terrafom, buildpacks, Kubernetes, etc.).
• Good knowledge in at least a programming language (JAVA, Python, Bash, Perl, etc.).
• Good knowledge in conducting DevSecOps in an agile work environment.
• Good knowledge in cloud security architecture and security requirements.
• Good knowledge in black box and white box testing (OWASP, HP Fortify, etc.).
• Good knowledge of continuous delivery and Application Lifecycle Management tools (JIRA, Git, Bamboo, Nexus, etc.).
• Good knowledge with secret management tools (CyberArk, Hashicorp etc.).
• Good knowledge with Monitoring tools (Dynatrace, Prometheus etc.).
• Good knowledge in the Cloud (Aws, Azure, Google, OVH etc.).
• Rapid self-starting capability and experience in team working.
• Excellent interpersonal and communication skills.
• Ability to participate in multi-lingual meetings, ease of communication.
• Security and cloud Skills.
• Automation skills to optimize and understand the DEVSECOPS pipelines.
• Ability to participate in multilingual meetings.
• Ability to work in multi-cultural environment, on multiple large projects.
• Excellent Team Player
• Ability to understand, speak and write English at level B1
• Ability to understand, speak and write French at level B1 is an advantage
• High degree of discretion and integrity is required as the applications managed and maintained in Choose an Entity contain personal and confidential data

Specific expertise

• Experience of managing Atlassian Bamboo Plans 
• Experience in using Bamboo Specs in java 
• Experience about using and managing a Renovate instance 
• Experience of using and integrating SonarQube with Bamboo

Certification & Standards

• Mandatory certifications (one of): Certified DevSecOps Professional (CDP) certification, AWS Certified DevOps Engineer – Professional, Microsoft DevOps Engineer Expert, Google Professional Cloud DevOps Engineer, or equivalent to be approved by the Commission.

The following documents / procedures will be requested to successfully complete the hiring process :

• A copy of your university degree(s)
• A copy of your criminal record
• Security Clearance Procedure

WHO WE ARE?

CRI company part of VASS Group, leads the digital transformation and cyber security in the European Union.

CRI operates serving the European Union Institutions, telecom operators, financial institutions and governmental bodies through a comprehensive offering of services and technologies.

Please visit our website and let's get in touch: www.cri-group.eu