DevSecOps Specialist M/F
DevSecOps Specialist M/F
Open-ended contract
Mission
- The DevSecOps Specialist is a crucial member of the cybersecurity team responsible for integrating security practices into the development and operations processes of the organization.
- This role focuses on creating a secure and efficient software development lifecycle (SDLC) by implementing security measures, automation, and continuous monitoring.
- The DevSecOps Specialist collaborates closely with developers, operations teams, and other cybersecurity professionals to ensure that security is embedded throughout the software development process.
- Collaborate with development and operations teams to integrate security practices into the SDLC, ensuring that security is not an afterthought but an integral part of the process.
- Design, implement, and maintain security controls and solutions to mitigate potential vulnerabilities and risks in software applications and infrastructure.
- Develop and enforce security policies, standards, and procedures to ensure compliance with industry best practices and regulatory requirements.
- Perform security testing and vulnerability assessments, identifying potential weaknesses and recommending remediation measures.
- Implement and manage security automation tools and processes to streamline security tasks and enhance efficiency.
- Monitor and analyze security logs, events, and alerts to identify and respond to security incidents promptly.
- Collaborate with software development teams to incorporate secure coding practices and conduct secure code reviews.
- Stay updated with the latest security trends, vulnerabilities, and emerging technologies, providing recommendations for improvement where necessary.
- Conduct security awareness training and education sessions for development and operations teams to promote a security-focused culture.
- Participate in incident response activities, investigating and resolving security incidents, and documenting lessons learned.
Profile
- Bachelor's degree in Computer Science, Information Security, or a related field.
- Relevant certifications such as CISSP, CEH or OSCP are nice to have.
- Proven experience in software development, systems administration, or network engineering, with a deep understanding of SDLC processes and methodologies.
- Use one from the following languages: Java or .Net and Python or php or other scripting languages (using Nugget or Maven or both and for Python at least Pip).
- Strong knowledge of cybersecurity principles, secure coding practices, and common security vulnerabilities.
- Experience with security tools and technologies, including vulnerability scanners, penetration testing tools, and security information and event management (SIEM) systems.
- Enterprise experience with cloud platforms focused on security services offered by AWS, GCP or OCI. Containerization technologies (Docker, Kubernetes) are a plus.
- Good knowledge of infrastructure as code Terraform, integration with Jenkins and Gitlab.
- Excellent problem-solving and analytical skills, with the ability to identify and address security risks effectively.
- Strong communication and collaboration skills to work effectively with cross-functional teams and stakeholders.
- Ability to adapt to fast-paced environments and effectively prioritize and manage multiple tasks.
- Demonstrated commitment to continuous learning and staying updated with the latest cybersecurity trends and technologies.
Organization
Our Mission Statement
Digital and human resources at the center of the sustainable development of our society.
In a world of continuous transformation, accelerated by technological developments and societal challenges, it is necessary to adapt in an ongoing, agile way to meet the challenges of the future.
About Inetum, Positive digital flow
Inetum is a European leader in digital services. Inetum's team of 28,000 consultants and specialists strive every day to make a digital impact for businesses, public sector entities and society. Inetum's solutions aim at contributing to its clients' performance and innovation as well as the common good.
Present in 19 countries with a dense network of sites, Inetum partners with major software publishers to meet the challenges of digital transformation with proximity and flexibility. Driven by its ambition for growth and scale, Inetum generated sales of 2.5 billion euros in 2023.