SecDevOps Consultant

TwelveSec is looking for a Security/SecDevOps Consultant. We are interested in a Senior profile, so you will need to have at least 4 years of experience in the field with a strong technical background and good knowledge of Secure SDLC principles, security management, and governance principles. You will also need to have strong Security DevOps skills, not only for embedding security tools in the pipelines, but also for reviewing the results generated by the security tools.

The desired starting date for the position is January 2023 and in order to join us, you must be an EU citizen or be able to work within the EU.

Tasks / Duties

Your tasks will, from day to day, include:

• Ensure the implementation of appropriate security procedures during development
• Ensure security best security practices are followed
• Perform security assessments and evaluation of security controls
• Support teams with “shift security left” by implementing and evaluating security tools (SCA, SAST, DAST, IAST)
• Support teams with diagnosing and resolving build security problems as well as basic security mitigation
• Support teams with the evaluation of new policies (including those for managing licenses, operations, and pipeline failures)
• Support teams with managing roles and responsibilities
• Provide security guidance throughout the whole DevOps lifecycle, taking into account all components needed for each project
• Work with teams to keep security tools updated, upgraded, and properly configured
• Define DevSecOps standards and processes for security automation tools

Requirements

Must-have

• At least 4 years working in the security field with involvement in the whole system lifecycle (both infrastructure and development)
• Good knowledge of Information Security Principles
• Secure development knowledge by following best practices
• Experience with S-SDLC and automated testing solutions (SCA, SAST, DAST, IAST)
• Base knowledge of version controls systems and CI/CD environments (GitHub, GitLab, Azure DevOps)
• Client-facing and consulting attitude
• Good communication and interpersonal skills
• Excellent use of spoken and written English language

Nice-to-have-(optional)

• Security Source Code Review Experience
• Technical Writing Skills

Benefits

Here are some of the benefits of joining the TwelveSec team:

• Earn a high salary
• Work in a friendly environment, with good team chemistry
• Work from home and have flexible hours
• Gain experience with new types of projects
• Improve your CV by getting related trainings with our support