Location: Spain (Remote)
Employment term: Full-Time, Permanent, Remote-based
Salary: Based on experience
We're seeking a DevSecOps Engineer who will introduce cutting-edge processes, tools, and methodologies to balance needs throughout the software development lifecycle, from coding and deployment to maintenance and updates.
If you're passionate about shaping a secure, efficient development environment, we want you on our team!
Role and responsibilities
- PowerShell
- Azure Management with “Azure CLI”
- Infrastructure as Code (IaC) with ARM Templates
- Azure Platform Knowledge
- Vulnerability Management: Identify web application vulnerabilities, prioritise countermeasures, consult on mitigation strategies, and ensure timely resolution.
- Azure DevOps Security Management: Improve the existing automated vulnerability detection tools on Azure DevOps. Collaborate with developers to address findings and minimize false positives.
- Microsoft SDL Integration: Lead proactive code reviews to pinpoint vulnerabilities, while refining and incorporating the Security Development Lifecycle into our engineering processes.
- Offer specialized application security guidance on projects, system issues, and during stakeholder meetings.
- Monitoring: Assist in developing and maintaining an ongoing security assurance program including development of appropriate scripts and monitoring capabilities to; verify security effectiveness, analyse data, develop trend analysis and ensure compliance to existing standards, policies, and procedures.
- Audit: Conduct technical security risk assessments with internal and external resources as needed.
Essential Skills and Experience
- At least three years relevant experience
- Proficiency in testing and identifying web application vulnerabilities
- Strong technical acumen with Azure infrastructure security, Microsoft security & core infrastructure components (virtualization, server management, active directory and identity & access management)
- Working knowledge of network security, firewalls and remote access technologies
- Define Azure data storage architectures and security strategies, and utilize them to analyse risks
- Excellent verbal and written communication skills (English B2 or equivalent level)
Desirable experience and skills
- Provide guidance on relevant application security industry standards and practices such as ISO27001, OWASP, ASVS, CIS, SANS, CWE, etc..
- Experience with test driven development, a plus Unit Testing experience
- Experience working in Agile/SCRUM environment
- Development with App Services (Web Apps and Function Apps) and other Azure resources like SQL or Redis
Qualifications and requirement
- Bachelor's degree (BsC) or equivalent years of experience
- Microsoft SharePoint, Office 365 or Azure Certified Developer would be nice to have
- Recent experience working in a digital agency, development consultancy or similar environment
- English B2 or equivalent level
Salary
- Competitive package depending on your experience and location within the UK. Our standard working week is 37.5 hours, Monday to Friday excluding bank holidays. You will be entitled to 33 days paid holiday per annum (including bank holidays) and can read more about the perks of working with us here.
What you'll love
- We are a fully virtual company so we are not limited by geography when looking for candidates
- We offer flexible working, training and knowledge sharing sessions, as well as other great perks
- We are Microsoft Gold partner and one of the leading Microsoft 365 and Teams solution providers in the UK - you will be working with the latest cutting-edge technology
- We take enormous pride in being as inclusive as possible and promote our ‘One Family’ ethos to everyone who joins our team
Please provide a covering letter with your application. This will help provide us with more insight into your application as well as help with the selection process.
ClearPeople is an equal opportunity employer. We welcome and encourage diversity in the workplace regardless of race, gender, religion, age, sexual orientation, gender identity, disability or veteran status.
