DevSecOps Analyst Advisor – Snyk Specialist Job Description

Position Description:

Work Mode: Hybrid (2 days/week onsite)

Job Description

We are seeking a DevSecOps Specialist with hands-on experience in the implementation integration and operation of the Snyk platform within an enterprise DevSecOps environment. The ideal candidate will help strengthen application security by integrating security controls into CI/CD pipelines supporting development teams and ensuring effective vulnerability management.

Key Responsibilities
Deploy configure and administer Snyk solutions within an enterprise environment.
Integrate Snyk into CI/CD pipelines preferably using GitLab CI/CD.
Configure and maintain automated security controls quality thresholds and security gates within delivery pipelines.
Support development teams in identifying and remediating security vulnerabilities.
Integrate applications and code repositories into the Snyk platform.
Analyze assess and prioritize identified vulnerabilities.
Manage false positives risk acceptance processes and remediation workflows.
Develop and maintain security dashboards KPIs and reports for stakeholders.
Contribute to the continuous improvement of DevSecOps practices and vulnerability management processes.

Your future duties and responsibilities:

Required Experience
Minimum of 3 years of experience in Application Security DevSecOps or administration of DevSecOps tools.
Minimum of 2 years of hands-on experience with Snyk.
Experience with one or more of the following Snyk modules:
Snyk Open Source (Software Composition Analysis SCA)
Snyk Code (Static Application Security Testing SAST)
Snyk Container
Snyk Infrastructure as Code (IaC)
Technical Skills
Experience integrating Snyk into CI/CD pipelines preferably using GitLab CI/CD.
Experience configuring automated security controls quality gates and security checks.
Strong understanding of the following concepts:
Software Composition Analysis (SCA)
Static Application Security Testing (SAST)
Container Security
Infrastructure as Code (IaC) Security
Vulnerability Management and Remediation Processes

Required qualifications to be successful in this role:

Desired Hands-On Experience
Integrating and managing applications and repositories within the Snyk platform.
Analyzing assessing and prioritizing security vulnerabilities.
Supporting development teams in vulnerability remediation activities.
Managing false positives and risk acceptance processes.
Tracking remediation plans and vulnerability management workflows.
Creating and maintaining security dashboards metrics and reporting.
Candidate Profile
Excellent communication and collaboration skills with the ability to work effectively across multidisciplinary teams.
Ability to clearly communicate security concepts and risks to both technical teams and business stakeholders.
Strong analytical skills attention to detail and ability to work independently.
Continuous improvement mindset with a focus on automating security practices and processes.
Compensation

CGI provides a reasonable estimate of the salary range for this position. The compensation range is determined based on various factors including skills geographic market experience education professional licenses and certifications. Compensation decisions are made based on the specific circumstances of each estimated salary range for this position is $60000 to $115000 CAD.

#LI-AM

Bilingualism (French and English) is required for this position due to the nature of the role requiring interaction with national and global clients.

Skills:

• French
• DevOps
• GitLab
• Infrastructure as a Code
• Quality assurance
• Vulnerability management(IAVM)

What you can expect from us:

Together as owners lets turn meaningful insights into action.

Life at CGI is rooted in ownership teamwork respect and belonging. Here youll reach your full potential because

You are invited to be an owner from day 1 as we work together to bring our Dream to life. Thats why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our companys strategy and direction.

Your work creates value. Youll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas embrace new opportunities and benefit from expansive industry and technology expertise.

Youll shape your career by joining a company built to grow and last. Youll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.

At CGI we value the strength that diversity brings and are committed to fostering a workplace where everyone belongs. We collaborate with our clients to build more inclusive communities and empower all CGI partners to thrive. As an equal-opportunity employer being able to perform your best during the recruitment process is important to us. If you require an accommodation please inform your recruiter.

To learn more about accessibility at CGI contact us via email. Please note that this email is strictly for accessibility requests and cannot be used for application status inquiries.

Come join our teamone of the largest IT and business consulting services firms in the world.