Senior DevSecOps Engineer

New

GermanyFull-TimeSenior

Salary not disclosed

Apply NowOpens the employer's application page

Job Details

5+ years of hands-on experience in DevSecOps, Application Security, or Security Engineering.
Strong practical experience integrating security tools into CI/CD pipelines.
Expertise with security scanning tools such as SAST, SCA, secret scanning, and container scanning.
Deep knowledge of CI/CD security concepts, least privilege, and secrets management.
Proven experience building vulnerability management and remediation processes.
Deep knowledge of software supply chain security and SBOMs.
Strong cloud security experience, ideally in AWS.
Hands-on experience with Kubernetes security, RBAC, and network policies.
Experience with Infrastructure as Code security, specifically Terraform.
Strong automation skills in Python, Bash, or Go.
Solid understanding of OWASP Top 10 and secure development practices.

Design and implement an end-to-end Application & Infrastructure Security operating model.
Build and maintain a robust vulnerability management program.
Integrate security controls like SAST, SCA, and SBOM generation into SDLC and CI/CD pipelines.
Strengthen software supply chain security through artifact signing and CI/CD hardening.
Define and implement cloud security baselines using Infrastructure as Code.
Establish Kubernetes security standards including RBAC and network policies.
Collaborate with engineering teams to remediate vulnerabilities and improve secure coding practices.
Support compliance and audit readiness efforts for frameworks such as PCI DSS.
Automate security workflows and reporting using Python, Bash, or Go.

View Full Description & ApplyYou'll be redirected to the employer's site