DevSecOps Delivery Consultant
- Deerfoot IT Resources Ltd
- 04/11/2021
Full time
Information Technology
Telecommunications
Software Engineer
Testing
Job Description
DevSecOps Delivery Consultant
Full Time / Permanent
£50k-£100k + Generous Benefits Package
Location: Flexi Working available - you can choose one of the following as your office base: London, Manchester, Birmingham, Bristol, Glasgow, Wales, Liverpool or Sheffield (remote for now)
As a trusted, approved and preferred recruitment partner to this prestigious organisation, we have been asked to assist in the recruitment of a DevSecOps Delivery Consultant. Our client offers excellence in career growth, professional development and a coveted personalised benefits package.
You will provide security consulting and delivery capability to our customers as a trusted authority, architecting and delivering secure pipelines for promotion of applications and infrastructure into hybrid cloud environments, while embedding security tooling and adopting a 'shift-left' approach.
You will provide security consulting and delivery capability to our customers as a trusted authority, architecting and delivering secure pipelines for promotion of applications and infrastructure into hybrid cloud environments, while embedding security tooling and adopting a 'shift-left' approach.
Your role
As a DevSecOps Delivery Consultant you'll consult and delivery across one or more of the following areas:
* Helping our clients to architect secure pipelines.
* Assessing the maturity of security within our clients DevOps processes.
* Embedding static, dynamic, interactive and mobile application security testing tools within application pipelines.
* Embedding Software Composition Analysis tools within pipelines.
* Embedding container vulnerability scanning tools within pipelines.
* Automating the delivery of secure cloud configurations within AWS, Azure or GCP using Infrastructure as Code.
* Embedding tools to scan Infrastructure as Code and test compliance with organizational cloud security policies within infrastructure pipelines.
* Definition of guardrails using cloud native technologies such as Azure Management Groups and Azure Policy or AWS Organizations and Service Control Policies.
* Automating secure configurations using tools such as Chef, Puppet and Ansible.
* Delivery of DevSecOps pipelines with security tooling embedded within them using automation servers.
* Definition of security requirements for container management services based on Kubernetes and Docker.
* Definition of security requirements for source code repositories, binary repositories and secrets managers used within pipelines.
* Working closely with software engineers and/or platform engineers to embed security thinking into DevOps teams.
* Delivery of security training to software engineers and/or platform engineers.
* Development of secure coding standards.
Your profile
* You will be comfortable working alone or as part of a team bring to use your experience in one or more of the following:
* Practical hands on experience of embedding security.
* Confident architecting solutions for one of the major public cloud platforms.
* Experience using application security testing tools and interpreting results.
* Proven ability to develop DevSecOps requirements and lead development and delivery or DevSecOps architectures.
* Experience working as a client-side advisor leading DevSecOps initiatives.
* A thirst for knowledge, a self-starter who is interested in expanding their experience through continual development.
Key Technologies you'll use (one or more of): AWS / Azure / GCP, GitHub / GitLab, Azure DevOps, Docker / Kubernetes, Jenkins / TeamCity / CircleCI / Bamboo, Chef / Ansible / Puppet, Veracode / CheckMarx / Fortify, OWASP ZAP / Burp Suite, Snyk, Terraform, JFrog Artifactory / JFrog X-Ray.
Please apply for more details.
Deerfoot IT Resources Ltd is a leading specialist recruitment business for the IT industry. We will always email you a full role specification, name our client and wait for your email authorisation before we send your CV to this organisation. Deerfoot IT: Est. 1997. REC member. ISO certified. *Each time we send a CV to a recruiting client we donate £1 to The Born Free Foundation (charity no. ).
Deerfoot is acting as an Employment Agency in relation to this vacancy.
Full Time / Permanent
£50k-£100k + Generous Benefits Package
Location: Flexi Working available - you can choose one of the following as your office base: London, Manchester, Birmingham, Bristol, Glasgow, Wales, Liverpool or Sheffield (remote for now)
As a trusted, approved and preferred recruitment partner to this prestigious organisation, we have been asked to assist in the recruitment of a DevSecOps Delivery Consultant. Our client offers excellence in career growth, professional development and a coveted personalised benefits package.
You will provide security consulting and delivery capability to our customers as a trusted authority, architecting and delivering secure pipelines for promotion of applications and infrastructure into hybrid cloud environments, while embedding security tooling and adopting a 'shift-left' approach.
You will provide security consulting and delivery capability to our customers as a trusted authority, architecting and delivering secure pipelines for promotion of applications and infrastructure into hybrid cloud environments, while embedding security tooling and adopting a 'shift-left' approach.
Your role
As a DevSecOps Delivery Consultant you'll consult and delivery across one or more of the following areas:
* Helping our clients to architect secure pipelines.
* Assessing the maturity of security within our clients DevOps processes.
* Embedding static, dynamic, interactive and mobile application security testing tools within application pipelines.
* Embedding Software Composition Analysis tools within pipelines.
* Embedding container vulnerability scanning tools within pipelines.
* Automating the delivery of secure cloud configurations within AWS, Azure or GCP using Infrastructure as Code.
* Embedding tools to scan Infrastructure as Code and test compliance with organizational cloud security policies within infrastructure pipelines.
* Definition of guardrails using cloud native technologies such as Azure Management Groups and Azure Policy or AWS Organizations and Service Control Policies.
* Automating secure configurations using tools such as Chef, Puppet and Ansible.
* Delivery of DevSecOps pipelines with security tooling embedded within them using automation servers.
* Definition of security requirements for container management services based on Kubernetes and Docker.
* Definition of security requirements for source code repositories, binary repositories and secrets managers used within pipelines.
* Working closely with software engineers and/or platform engineers to embed security thinking into DevOps teams.
* Delivery of security training to software engineers and/or platform engineers.
* Development of secure coding standards.
Your profile
* You will be comfortable working alone or as part of a team bring to use your experience in one or more of the following:
* Practical hands on experience of embedding security.
* Confident architecting solutions for one of the major public cloud platforms.
* Experience using application security testing tools and interpreting results.
* Proven ability to develop DevSecOps requirements and lead development and delivery or DevSecOps architectures.
* Experience working as a client-side advisor leading DevSecOps initiatives.
* A thirst for knowledge, a self-starter who is interested in expanding their experience through continual development.
Key Technologies you'll use (one or more of): AWS / Azure / GCP, GitHub / GitLab, Azure DevOps, Docker / Kubernetes, Jenkins / TeamCity / CircleCI / Bamboo, Chef / Ansible / Puppet, Veracode / CheckMarx / Fortify, OWASP ZAP / Burp Suite, Snyk, Terraform, JFrog Artifactory / JFrog X-Ray.
Please apply for more details.
Deerfoot IT Resources Ltd is a leading specialist recruitment business for the IT industry. We will always email you a full role specification, name our client and wait for your email authorisation before we send your CV to this organisation. Deerfoot IT: Est. 1997. REC member. ISO certified. *Each time we send a CV to a recruiting client we donate £1 to The Born Free Foundation (charity no. ).
Deerfoot is acting as an Employment Agency in relation to this vacancy.
About Deerfoot IT Resources Ltd