Senior DevSecOps Engineer (AWS & Azure) (She/ He/ They)
Brak informacji o wynagrodzeniu
SeniorFull-time·B2B
#383118·Dodano dziś·0
Źródło: justjoin.itTech Stack / Keywords
AWSAzureTerraformDevOps
Firma i stanowisko
At Capco Poland, a global leader in technology and management consulting, the company focuses on digital transformation in the financial industry across banking, payments, capital markets, wealth, and asset management.
Wymagania
- Deep, practical experience securing automated CI/CD build and release pipelines.
- Hands-on engineering experience with native security services and access controls in both AWS and Azure.
- Advanced proficiency with Terraform or cloud-native Infrastructure as Code tools like Bicep or CloudFormation.
- Experience implementing and maintaining security tools such as SonarQube, Prisma Cloud, Wiz, Snyk, CrowdStrike, or Sentinel.
- Strong understanding of Kubernetes (including EKS/AKS) security best practices, service meshes, and container runtime defense.
Nice to have:
- Certified DevSecOps Professional (CDP) or Practical DevSecOps certification.
- AWS Certified Security – Specialty or Azure Security Engineer Associate.
- Certified Kubernetes Administrator (CKA) or Certified Kubernetes Security Specialist (CKS).
Obowiązki
- Design, build, and maintain secure deployment pipelines using tools like GitHub Actions, Azure DevOps, and GitLab CI.
- Integrate automated vulnerability scanning, secret detection, and software supply chain security into developer workflows.
- Write, test, and deploy automated policy guardrails using Infrastructure as Code linting and scanning tools like Checkov, Tfsec, and OPA/Rego.
- Automate deployment of EDR agents, vulnerability scanners, and monitoring tools into base machine images and containerized environments.
- Build automated workflows for vulnerability management that ingest findings from cloud security tools, prioritize risks, and route them to engineering backlogs such as Jira.
- Configure and automate log delivery of application, container, and infrastructure logs to central repositories and SIEM systems.
- Provide developer-friendly remediation guidance and create reusable, secure-by-default code templates such as Terraform modules and Helm charts.
Benefity
- Flexible collaboration model based on a B2B contract.
- Opportunity to work on diverse projects.
Inne informacje
We are looking for Poland based candidate.
Capco Poland
25 aktywnych ofert