DevSecOps Engineer

New

GermanyFull-TimeMiddle

Salary not disclosed

Apply NowOpens the employer's application page

Job Details

Minimum 3 years of experience in Security, SecOps, or DevSecOps roles.
Hands-on experience identifying and remediating infrastructure misconfigurations using policy-as-code and IaC security scanning tools (Checkov, tfsec, Terrascan).
Knowledge of cloud infrastructure, CI/CD pipelines, infrastructure automation, and containerized environments (Docker, Kubernetes).
Basic programming or scripting experience with JavaScript, TypeScript, Python, or similar.
Experience managing version control systems and secure deployment workflows.
Familiarity with WAF and firewall configuration (e.g., Cloudflare).
Strong understanding of security principles, secure coding, OWASP Top 10, encryption, authentication, and access control.
Experience with security monitoring, SAST/DAST scanners, and log analysis.
Knowledge of threat modeling, risk assessment, and incident response processes.

Design, implement, and maintain automated security tools and processes integrated into CI/CD pipelines.
Develop and manage security automation workflows, including static code analysis, vulnerability scanning, and infrastructure security assessments.
Collaborate with infrastructure and operations teams to design secure cloud architectures, deployment processes, and network configurations.
Implement and maintain security monitoring, intrusion detection, logging, and observability solutions.
Support the implementation of secure access controls, encryption, and WAF policies.
Work closely with cross-functional teams to embed security requirements throughout the SDLC.
Conduct infrastructure and configuration reviews to remediate vulnerabilities and compliance gaps.
Assist with security audits, compliance assessments, and documentation.
Contribute to incident response planning and risk assessments.

View Full Description & ApplyYou'll be redirected to the employer's site