SecOps HF

The DevSecOps Engineer is responsible for integrating security throughout the development and operations cycle (CI/CD infrastructure cloud monitoring). He/She contributes to implementing and improving security practices within DevOps teams while fostering a DevSecOps culture focused on automation compliance and collaboration. Their role is to ensure the resilience reliability and compliance of systems in the face of security threats. 

Key Responsibilities: 

1. Security Integration and Assessment:  

• Actively contribute to integrating security into DevOps processes 

• Conduct security assessments of existing systems 

• Implement vulnerability scanning tools (SAST DAST IAST SCA) 

• Produce reports and propose improvement areas 

• Ensure integration of security practices into Agile/Scrum processes 

1. Infrastructure and CI/CD Pipeline Security: 

• Integrate security tools into DevOps pipelines 

• Implement access control and identity management policies (IAM RBAC OAuth) 

• Design and manage secure cloud and onpremise environments 

• Automate patch management and security updates 

• Conduct Proof of Concepts (POCs) for security solutions 

• Oversee production deployment of security solutions 

1. Monitoring and Incident Response: 

• Deploy threat monitoring and detection tools (SIEM IDS/IPS) 

• Implement logging and traceability solutions (ELK Grafana Prometheus) 

• Establish proactive remediation strategies for security incidents 

• Participate in oncall rotation for incidents 

1. Compliance and Risk Management 

• Automate compliance with security regulations (e.g. PCI DSS) 

• Manage and automate regulatory compliance and risk management 

• Define and implement operational security dashboards and KPIs 

1. Automation and Continuous Improvement 

• Develop and deploy automated security manifests 

• Optimize microservices and container security (Kubernetes Docker Istio) 

• Continuously evaluate and improve secrets management strategies 

• Integrate security into the software development lifecycle (ShiftLeft Security) 

1. Training and Knowledge Sharing 

• Train teams on security best practices 

• Collaborate closely with DevOps Security and Development teams 

• Document secure architectures for DevOps infrastructures 

Qualifications :

Education 

• Bachelors or Masters degree in Computer Science Information Security Cybersecurity or a related technical field 

• Relevant professional certifications such as CISSP CCSP CEH AWS Certified Security or Google Cloud Professional Security Engineer are highly valued 

Experience 

• Minimum of 5 years of experience in DevOps cybersecurity or a related IT role 

• Proven track record of implementing security measures in cloud environments (GCP AWS Azure) 

• Handson experience with CI/CD pipelines and infrastructure as code 

Technical Skills 

• Proficiency in containerization technologies (Docker Kubernetes) 

• Strong knowledge of Linux/UNIX operating systems 

• Experience with security tools such as SAST DAST IAST and SCA 

• Familiarity with IAM solutions and Zero Trust architectures 

• Expertise in scripting languages (Python Bash PowerShell) 

• Understanding of network protocols and security concepts 

Soft Skills 

• Excellent problemsolving and analytical skills 

• Strong communication abilities both written and verbal 

• Ability to work effectively in crossfunctional teams 

• Selfmotivated with a passion for continuous learning 

• Adaptability to rapidly changing technological environments 

Additional Information :

Youll love joining us...  

• At Voyage Priv the entrepreneurial adventure is a reality: take on ambitious and fulfilling projects while joining a company committed to the growth of its teams.  
   

• Live in the South of France in an exceptional natural economic and cultural environment on a modern digital and ecoresponsible campus.  
   

• Find your own balance with up to 2 days of telecommuting per week which you can concentrate on one week at a time up to 4 times a year.  
   

• Put meaning back into your work and discover a unique ecosystem creating bridges between worlds that are often far apart: the economic sporting academic and social worlds and take part in one of the Vision projects (Ecole des XV Provence Rugby VP Green Les Tremplins Chez Pierre).  
   

• Cancel your sports subscription! Access our large Campus gym morning noon and night and play Padel whenever you like on our court reserved exclusively for Voyage Priv employees...  
   

• Live to the rhythm of Voyage Privs various Business & Fun highlights (Company Breaks Carnival Annual Convention... take part in meetups and talks and enjoy free tickets to every Provence Rugby home match or dance to the sounds of the Dalida Institute!  
   

• Would you like to take advantage of our getaway offers Benefit from up to 20 off our irresistible prices. 

Remote Work :

No

Employment Type :

Fulltime