DevSecOps

Position: DevSecOps

Job location: Kraków

Date of publication: 2020-01-28 16:51:00

Diverse CG is looking for Candidates for our Client:

DevSecOps

 

 

RESPONSIBILITIES

  • Architecting robust and scalable cloud native solutions for vulnerability scanning, reporting and metrics

  • Designing and implementing serverless functions, webhooks, CLIs and other utilities for helping engineering teams automate and validate their security scans

  • Integrating automated security tests via various tools into CI/CD pipelines

  • Leveraging cloud infrastructure and APIs to help gain visibility and oversight of our security posture

  • Investigating commercial and open-source security scanning tools

  • Developing various automation scripts, plugins and dashboards to enable application security and vulnerability management oversight at scale

  • Performing research and documenting best practices on securing and implementing various technologies as we adopt them

  • Providing assistance to engineering teams for running security scans, interpreting results, and tracking remediations

  • Creating resources, documentation and training materials to help engineering teams onboard security scanners

 

 

REQUIREMENTS

  • Must have at least 3 years of experience in either development, operations or security

  • Strongly proficient in at least one scripting language

  • Familiarity with DevOps practices, including CI/CD pipelines and tools (e.g. Jenkins)

  • Exposure to various programming languages (i.e. ability to figure out what’s going on by looking at code snippets)

  • Exposure to cloud infrastructure and network architecture, familiarity with cloud security concepts, especially with Azure.

Nice to have:

  • Strong communication skills and the ability to present security concepts to non-technical audiences
  • Strong ability to learn and research new things, including tools, languages, frameworks, etc.
  • Some experience with or desire to learn security testing tools such as SAST, DAST, and vulnerability scanners (e.g. Fortify, OWASP ZAP, Nessus, etc)
  • Experience with, or desire to learn, Infrastructure as Code and Automated Configuration Management tools (e.g. Terraform and Ansible)
  • Familiarity with application security concepts (e.g. OWASP Top 10)

 

 

WE OFFER

  • Private medical care for employees and their families (including dental package)

  • Life insurance in the amount of a two-year salary (payable by the employer)

  • Co-financing to the Multisport card

  • A cafeteria platform with a wide range of services and products , e.g. vouchers for chain stores

  • IP Tax Relief - tax credit for the creation of copyright

  • ESPP - Employee Stock Purchase Plan - option to buy company shares at a preferential price (with - 15% discount)

  • Additional 3 days free for fathers on the occasion of birth of child

  • Co-financing for glasses - PLN 500 (every 2 years)

  • Office - modern buildings, unlimited access to drinks (coffee, tea), fresh fruit, places to play table football etc.

  • Volleyball court and grill in near the office (Fun and Sport area)

  • Wide discount offer in cultural facilities and service outlets - sports sections co-financed by the employer (skiing, wakeboarding, football, etc.)

  • The opportunity to participate in charity events (CSR)

  • Integration days (away days) and company events (e.g. Christmas Party)

  • The possibility of funding education (Educational Assistance Policy)

  • Relocation packages

  • Employee Referral Program - bonus for recommending candidates for work

  • Children's camps

  • Robotics workshops for children

  • Family picnics

APPLY Please apply via: justyna.grabowska@diversecg.pl

 

Please include in the application statement as below:

 

Having read the disclaimer provided by the Data Controller, I hereby give my consent for the processing of my personal data contained in my job application by the Publisher for the purpose of the current recruitment process and any future recruitment projects.

Przed wyslaniem CV/dokumentów aplikacyjnych, uprzejmie prosimy kandydatów o zapoznanie się z klauzulą informacyjną.

Po zapoznaniu się z klauzulą informacyjną podaną przez Administratora Danych dobrowolnie wyrażam zgodę na przetwarzanie przez Ogłoszeniodawcę moich danych osobowych, zawartych w mojej ofercie pracy, dla potrzeb procesu tej rekrutacji oraz dla realizacji przyszłych projektów rekrutacyjnych.

Personal Consulting Agency (License No. 4642)

Send message

Add files (max 2MB)

Upload files

Change

Diverse CG Sp. z o.o. Sp.k.

Warsaw, Poland

Nowogrodzka 21,
PL-00511 Warsaw, Poland

office@diversecg.pl 
www.diversecg.pl

Diverse CG Sp. z o.o. Sp.k.

Gdańsk

Al. Grunwaldzka 415,
80-309 Gdańsk, Poland

office@diversecg.pl 
www.diversecg.pl 

Diverse Consulting Group (UK) Ltd.

London

118 Pall Mall,
London SW1Y 5ED, United Kingdom

office@diversecg.co.uk 
www.diversecg.co.uk 

Warsaw

London

Gdańsk