DevSecOps Consultant

CICD pipelines container platform and integrationsServicesoBitBucket & BitBucket PipelinesoJenkins TFS (Team Foundation Server) SVNoCLI tools and configuration: Git Maven NPM Python AWS JavaoArtifact repositories and container registryoSecurity scanning such as SAST DAST SCA API Penetration TestingoContainer build and deployment via k8s helm charts etc.oIAM and credential management with AD (Active Directory) groups and local groupsEssential job functions1.Implement access and authorization automation via AD group assignments and RBAC (Role Based Access Control) permissions across all DevOps tools for seamless onboarding and offboarding of users.2.Manage the creation and rotation of credentials leveraging service accounts and PAM (privileged access management) to enforce a zerotrust environment.3.Create configuration as code to define objects and modifications across DevOps tools.oAutomate code project and repository creation with standard configuration such as PR approvals protected branches etc.oAutomate artifact repository configurations such as retention policies repository proxies etc.4.Coordinate with product vendor support to troubleshoot integration issues and feature requests.5.Ensure DevOps tools (e.g. BitBucket Jenkins etc.) and any plugins or extensions remain up to date with the latest security and feature enhancements.6.Ensure DevOps tools have secure network access to one another via firewall rules API tokens/credentials etc.7.Assist development teams on their automation journey by embedding in their team to drive pipeline creation deployment scripts and strategies (A/B blue/green etc.) and secure code.8.Provide guidance and standardization on project structure and build tools for consistent artifact creation across applications.9.Assist development teams on unit and integration test best practices agnostic of programming language and frameworks.10.Incorporate change management processes into CICD pipelines and enforce build once deploy anywhere for environment consistency.11.Integrate SAST and SCA scanning into pipelines to enforce secure code and supply chains.12.Automate tech stack patching using tools like Ansible to ensure application dependencies (e.g. JDK python etc.) are up to date.13.Create and configure Kubernetes clusters via Rancher to provide runtime environments to applications while ensuring security standards (i.e. network isolation)14.Facilitate Kubernetes and Rancher upgrades as needed (e.g. vulnerability remediation) and periodically incorporate new features. Plan and communicate upgrades with customers.15.Assist developer creation and support of k8s deployment files and helm charts to deploy applications and integrating these deployments into CICD pipelines.16.Maintain up to date baseline container images that include necessary logging monitoring and toolchains (e.g. JDK python etc.) that pass security scans.17.Sup