Senior DevSecOps Engineer – CI/CD and Cloud Security

Our client is a global leader in cloud security and software development.

• At least 5 years of engineering experience, with 3+ years in CI/CD or DevSecOps.
• Strong expertise with Jenkins and Groovy shared libraries.
• Advanced Python automation skills including JSON/YAML processing and scripting.
• Deep knowledge of Maven, NPM, Python packaging; exposure to Helm, Terraform, and container image metadata.
• Solid understanding of supply-chain security concepts such as SLSA, CycloneDX SBOM, and digests.
• Experience with SonarQube, Sonatype IQ, and container/SAST scanning tools.
• Proven performance tuning skills including caching, parallel builds, and dependency pruning.
• Awareness of compliance standards and best practices.

Nice to have:

• Experience with artifact signing/attestation tools like cosign or OCI.
• Familiarity with Terraform modules and Helm chart publishing patterns.
• Knowledge of GitOps or release automation processes.
• Cloud experience with GCP or AWS.

• Design and maintain Groovy pipeline steps for build, test, package, scan, and deploy processes.
• Extend Python tooling to enhance SLSA provenance, SBOM generation, hash/digest accuracy, and security scan aggregation.
• Optimize pipeline performance through parallelization, caching, and dependency management.
• Ensure artifact integrity with correct SHA1/SHA256 mapping and reproducible inputs.
• Refactor legacy scripts to improve code quality and standardization.
• Document ci-config.yaml standards and best practices for teams.
• Mentor engineers on secure pipeline development and supply-chain security practices.
• Troubleshoot and proactively prevent pipeline incidents to ensure seamless integration.

Only candidates with an existing legal right to work in the European Union will be considered for this role.