DevSecOps Engineer (a)
Introduction
We are seeking a dedicated and skilled DevSecOps Engineer (a) in Stäfa to join the team and play a pivotal role in enhancing the security of the development lifecycle. The ideal candidate will be responsible for automating and integrating security processes, with a strong emphasis on vulnerability management. This role involves implementing cutting-edge security tools, enabling continuous security testing, and working closely with development teams to ensure that security feedback is seamlessly integrated into the development process.
Responsibilities
- Implementing into projects security tools such as SAST, secret scanning, and security testing report generation.
- Developing and maintaining CI/CD pipelines using tools like TeamCity, Jenkins, and Azure DevOps.
- Generating and analyzing Software Bill of Materials (SBOM) and integrating with tools like Dependency Track and Defect Dojo.
- Integrating security scanners like Semgrep and gitleaks.
- Collaborating with development teams to provide vulnerability feedback and support them with analysis and resolution.
- Utilizing containerization and orchestration tools like Docker and Kubernetes.
- Writing scripts and automation using Bash, Python, and PowerShell.
Qualifications
- Experience with security tools such as SAST, secret scanning, and security testing.
- Proficiency in CI/CD tools like TeamCity, Jenkins, and Azure DevOps.
- Knowledge of SBOM management and tools like Dependency Track and Defect Dojo.
- Familiarity with security testing tools like Semgrep and gitleaks.
- Experience with containerization and orchestration tools like Docker and Kubernetes.
- Strong scripting skills in Python, PowerShell and Bash.
- Understanding of DevOps practices and tools.
- Familiarity with Android and iOS build environments.
- Knowledge of networking and problem-solving skills.
Have we caught your interest? Then apply now and become part of the team – we look forward to getting to know you!
Diana Afonso
Telefon: +41 58 255 31 19