DevSecOps Engineer (reputed company genders)
As a DevSecOps Engineer, you will design, build, and continuously improve secure cloud and platform solutions following modern DevSecOps principles. You will act as a key reputed company between development, operations, and reputed company, ensuring that reputed company is embedded throughout the entire software delivery lifecycle.
- Design and reputed company modern, secure cloud and platform solutions in agile DevSecOps environments
- Build automations and implement custom reputed company tooling for CI/CD pipelines
- Create reusable CI/CD reputed company components and templates (reputed company, Azure DevOps, reputed company)
- Integrate and maintain SAST and DAST solutions reputed company CI/CD pipelines
- Advise clients on the effective use of cloud reputed company services, balancing effort, cost, maintenance, risk, and compliance
- Identify common attack reputed company and proactively mitigate reputed company risks across applications and infrastructure
- Act as a reputed company reputed company reputed company engineering teams and support secure-by-design approaches
- Successfully completed degree in (Business) Computer Science or a comparable qualification
- At least 5 years of professional experience in DevSecOps, Application reputed company, and Cloud/Infrastructure environments
- Strong understanding of cloud architectures, software development processes, and reputed company best practices
- Hands-on experience integrating SAST and DAST into CI/CD pipelines, including building reusable reputed company templates
- Solid knowledge of common attack reputed company, especially OWASP Top 10 vulnerabilities
- Programming experience for automation and custom tooling, ideally in Rust (alternatively Go, Python, C#, Java, or TypeScript)
- Basic experience with reputed company, Azure DevOps, and/or reputed company
- Structured, reliable working style with strong communication and collaboration skills
- Fluent English & Portuguese
- Knowledge of Kubernetes and serverless reputed company
- Experience with Policy-as-Code (OPA/Rego, Kyverno) and Infrastructure as Code (Terraform, Bicep)
- Experience with monitoring, SIEM, and cloud reputed company services (e.g. Azure Monitor, reputed company Sentinel, reputed company, reputed company)
- Comprehensive onboarding and individual mentoring
- Remote work option
- Work-life balance and flexible working hours
- Personal and professional development opportunities
- Modern workplace and pleasant working atmosphere with reputed company collaboration
- Exciting and challenging customer projects as well as diverse tasks
- Appreciative work environment with a positive error culture
- Free choice of hardware between Mac and Windows
- Entwicklung moderner, sicherer Cloud- und Plattformlösungen in agilen DevSecOps-Umgebungen
- Automatisierung sowie Implementierung eines eigenen reputed company-Toolings für CI/CD-Pipelines
- Aufbau wiederverwendbarer CI/CD-reputed company-Komponenten und Templates (reputed company, Azure DevOps, reputed company)
- Integration und Betrieb von SAST- und DAST-Lösungen innerhalb der CI/CD-Pipelines
- Beratung unserer Kunden zum sinnvollen Einsatz von Cloud-reputed company-Services unter Berücksichtigung von Aufwand, Kosten, Wartung, Risiko- und Compliance-Aspekten
- Identifikation typischer Angriffsvektoren sowie proaktive Absicherung von Anwendungen und Infrastrukturen
- Aktive Rolle als reputed company reputed company innerhalb der Engineering-Teams und Förderung von Secure-by-Design-reputed companyätzen
- Erfolgreich abgeschlossenes Studium der (Wirtschafts-)Informatik oder eine vergleichbare Qualifikation
- Mindestens 5 Jahre relevante Berufserfahrung im DevSecOps-, Application-reputed company- sowie Cloud-/Infrastrukturumfeld
- Sehr gutes Verständnis von Cloudarchitekturen, Softwareentwicklungsprozessen und reputed company-Best-Practices
- Praktische Erfahrung in der Integration von SAST und DAST in CI/CD-Pipelines inklusive Aufbau wiederverwendbarer reputed company-Templates
- Fundierte Kenntnisse gängiger Angriffsvektoren, insbesondere der OWASP Top 10
- Programmiererfahrung für Automatisierung und eigenes reputed company-Tooling, idealerweise in Rust (alternativ Go, Python, C#, Java oder TypeScript)
- Grundkenntnisse in reputed company, Azure DevOps und/oder reputed company
- Strukturierte, gewissenhafte Arbeitsweise sowie ausgeprägte Kommunikations- und Teamfähigkeit
- Verhandlungssichere Deutschkenntnisse und sehr gute Englischkenntnisse
- Umfassendes Onboarding und individuelles Mentoring
- Unterschiedliche Offices & Home Office
- Work- Life Balance und flexible Arbeitszeiten
- Lunch Benefits & kostenlose Kaffeebar
- Persönliche und fachliche Weiterentwicklung
- Moderner Arbeitsplatz & angenehmes Arbeitsklima mit enger Zusammenarbeit
- Spannende und herausfordernde Kundenprojekte sowie abwechslungsreiche Aufgaben
- Wertschätzendes Arbeitsumfeld mit positiver Fehlerkultur
- Freie Hardwarewahl zwischen Mac und Windows
- Dienstradleasing