Informacje o stanowisku

Information Security Engineer – DevSecOps/AppSec

Location: Wrocław

Work Arrangement: Hybrid work – 2 days in office in Wrocław, 3 days remote

Contract: Full-time employment

Salary: 30.000 PLN gross

We are looking for a DevSecOps Engineer for our client – one of the biggest airlines.

The Role

We are seeking an Information Security Engineer who is comfortable working with minimal supervision. You will perform security architecture reviews of new and existing platforms, partnering with business units and departments to provide input on security standard methodologies throughout project lifecycles. You will contribute to the security program by performing reviews and security audits, confidently discussing our Cyber Security program, and helping integrate our business needs with our Cyber Security needs.

The SecDevOps Engineer will provide operational and security expertise in executing technology strategies, implementing secure software development measures into CI/CD pipelines, and collaborating with development teams to apply a shift-left security strategy in the development lifecycle.

Your Responsibilities Will Include:

1. Contributing features to internally developed Cybersecurity tools and integrating those tools into the DevOps pipelines.
2. Overseeing development lifecycles and analyzing security information related to them.
3. Driving continuous improvement to the DevOps pipelines and processes, and the Cybersecurity tools, services, and processes.
4. Performing technology research from a security context for strategic, tactical, and operational business needs, and delivering research results to internal stakeholders.
5. Researching appropriate security testing tools.
6. Conducting whitebox code reviews of products, applications, and integrations where appropriate.

Requirements

1. Experience working with Cloud in a security-enabled environment.
2. Strong experience with AWS is required.
3. Proven ability to work independently and collaboratively as part of a global team, delivering to multiple deployment schedules.
4. Proven experience with Web Application Security Testing, Code Reviews, Vulnerability Assessment, Penetration Testing, and Generating Reports.
5. Experience with (NIST, PCI) security controls, governance, and risk management protocols.
6. Relevant experience with application security, secure software development, and building security into software development workstreams.

Please send your CV to us at .

Wrocław - Oferty pracy w okolicznych lokalizacjach