infosec-jobs.com
DevSecOps / Applications Security
Luxembourg, Luxembourg
Alter Solutions
IT and Cybersecurity consulting services in Europe, America and Africa. Discover our expertise in Software development and Cloud computing.Job Description
Cybersecurity Division
Project: Adoption of SAST (Static Application Security Testing)/ SCA (Software Composition Analysis) & Pipelines Security control.
Main tasks:
- Strengthen the adoption of SAST (Static Application Security Testing)/ SCA (Software Composition Analysis) in the company.
- Coordinate with the various Security champions in Dev teams to reduce false positives, provide advice on in-place controls at CI/CD level.
- Accompany the Devs for the security-oriented code review.
- Pipelines security control.
- Audit of pipelines (Azure DevOps and Jenkins).
- Analysis of findings, review of these findings with the teams.
- CIS Benchmarks (Center of Internet Security).
- Standardization and automation with Terraform.
- Tools : Fortify, SonarQUBE.
Profile:
- DevSecOps with Kubernetes, Azure DevOps / AWS knowledge.
- Familiar with SAST (Static Application Security Testing)/SCA (Software Composition Analysis).
- Understanding of security challenges for the development and code review process.
- Familiar with Terraform or other "Infrastructure as a code" tools.
- Familiar with tools like Fortify, SonarQUBE, Checkmax.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Automation AWS Azure CI/CD DevOps DevSecOps Kubernetes SAST SonarQube Terraform
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs