VonConsulting.ro - 10 ani de Recrutare si Oursourcing IT
  • Home
  • About Us
  • Servicesarrow_drop_down
    • Recruitment
    • Outsourcing
    • Temporary Staffing
    • Consultancy
    • Payroll and Administrative services
  • Career Opportunities
  • Contact Us
  • arrow_drop_down
  • ro
  • en
  • de

DevSecOps Engineer

ID: von_64427330
Full time
Bucharest
Middle
08-12-2023
Employer Profile

Technology Centre of a multinational Telecom company.

Responsibilities
  • The role is responsible for contributing to a major programme of work to embed security within all company application software development, planning controls to counter emerging threats and address evolving technology. They will support the development of the blueprint of technical security controls, which follow a security as code and shift left approach, as well as their corresponding roadmaps, assessing, and influencing suppliers.
  • They will work with the wider Cyber Security Strategy and Secure by Design Architecture team to update and leverage state of the art threat models to define controls, policies and technologies needed to mitigate security risks. They also work across all local markets, Digital and IT as well as Cloud and Software Engineering teams to update and align global DevSecOps, Cloud, Container, API and Artificial Intelligence security standards for the company, and to help them to understand how securely configure CI/CD implementations.
  • They will work to understand and improve security of software applications, APIs, cloud and containers, particularly in relation to Security as Code, and interact where necessary with our global vendors. The role provides a sense of balance across the wider Security Architecture team to ensure DevSecOps security controls are implemented to support each other, are measured to demonstrate risk reduction and prepare the company and its customers for the evolving threat landscape.
Requirements
  • Expert knowledge in Application Security and DevSecOps, and the software technologies, programming and development practices that underpin them. Include but not limited to: Cloud Security, Container Security, Application security testing, API Security, Source Code Analysis, Static Application Security Testing, Artificial Intelligence, scripting best practice, Programming Languages, Software vulnerabilities.
  • Deep knowledge of at least one of SCA, SAST, Container Security, Cloud Security (AWS, GCP, Azure, OCI), API Security, open source security.
  • Working knowledge of the shift-left mindset and vulnerability remediation within developer toolsets and environments such as GitHub.
  • Good understanding of automation tooling such as PowerAutomate and PowerBI and work tracking tools such as Azure DevOps, GitHub Actions and use of Artificial Intelligence in software engineering.
  • A proven track record, in designing, documenting and deploying a range of DevSecOps security features for a global organisation.
  • A proven track turning documents into consumable code snippets or templates e.g. Terraform templates, Python scripts.
  • Proven track record of actively contributing to the creation, review and redactions of standard, high level architecture documents and presentations at all levels from very technical to leadership level.
  • Security Certifications such as CISSP, CCSP, GSEC.
Apply with CV
close
  • Max. file size: 50 MB.
  • Hidden
  • This field is for validation purposes and should be left unchanged.
  • Similar Jobs
    • Software Engineer for Real Time Drivers – Remote
    • Software Engineer for Communication Firmware
    • Cloud Site Reliability Engineer
    • Lab Engineer – Real Time Drivers
    • Voice Core Engineer
  • Recently Added Jobs
    • Supplier Security Assurance Specialist
    • Software Senior Tester / Test Architect
    • TouchSense Tools SW Engineer
    • SW Engineer – ML framework
    • Automotive Embedded Software Engineer for In-Vehicle Networking and Power Management
  • Recent Articles
    • Our Job Lists Explained: Today, What Does a Product Development Manager Do?
    • Returning to the Office Work: a Vital Imperative or Not?
    • Unlock the Power of Data: The Role of a Database Expert
    • Firmware Engineers: a SF Job in an Enigmatic World?
    • The Hidden Architect – The Layout Engineer
© 2025 - VonConsulting.
  • Terms and Conditions
  • Privacy
Manage Cookie Preferences
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Preferences
{title} {title} {title}