DevSecOps Architect

Our Client is a global provider of precision instruments and services. Renowned as an innovation leader, its solutions are essential in critical R&D, quality control, and manufacturing processes across various industries, including life sciences, food, and chemicals. The company operates worldwide, with a culture defined by innovation and an international outlook.

We are currently seeking a DevSecOps Architect . The successful candidate will be pivotal in developing and implementing a comprehensive cybersecurity strategy for the organization. This role will focus on integrating security into DevOps processes and ensuring the protection of data and systems from cyber-attacks and data breaches.

Key Responsibilities
Collaborate with development and operations teams to integrate security into DevOps processes, ensuring the secure deployment of applications and infrastructure.
Design and architect secure, scalable infrastructure solutions that adhere to DevOps principles and industry standards.
Develop and maintain security policies, standards, and procedures, ensuring compliance with regulatory requirements.
Conduct maturity modeling to assess the development team's DevOps process maturity.
Implement and manage security testing tools and processes, including vulnerability scanning, penetration testing, and code analysis.
Work with cross-functional teams to incorporate security measures into the software development lifecycle.
Stay current with emerging security threats, trends, and technologies.
Communicate security risks and issues to senior management and stakeholders.
Serve as a subject matter expert and advocate for application security best practices.
Provide guidance and support to IT teams and departments to effectively implement security measures.

What You Need to Succeed
Bachelor’s degree in Computer Science, Information Systems, or a related field.
Experience in software development and application security architecture and design.
Strong technical knowledge of DevOps tools and processes, network security, cryptography, application security, and cloud security
In-depth understanding of web application architecture, design, and development.
Knowledge of software development requirements for embedded systems.
Comprehensive understanding of security principles and practices, including OWASP Top 10, CWE Top 25, and SANS 25.
Familiarity with software development tools such as Git, JIRA, and Eclipse (experience with Synopsys tools like Coverity, Blackduck, and CodeDX is a plus).
Awareness of industry standards and regulations such as PCI DSS and GDPR.
Excellent analytical and problem-solving skills, capable of identifying and mitigating potential security risks.
Strong communication and interpersonal skills for effective collaboration with internal stakeholders and external vendors.
Relevant industry certifications such as CISSP, CISM, CSSLP, or CEH are advantageous.

The Offer
Stable employment conditions with a contract of employment.
Annual performance bonus.
Hybrid work model (2 days in the office).
Comprehensive Medicover medical care with a basic dental package.
Life insurance with options for family member coverage.
Medicover sport card.
Access to language courses.
A supportive environment for your initiatives, charity, and CSR actions.
A diverse and inclusive workplace.

* This recruitment process is included in Cpl Gold Referral Program. You can receive PLN 5,000 bonus for recommending an IT specialist Do you know someone who is a perfect fit for this job offer? Do not wait and send us your candidate's CV now using the form available at this link - recommend

**Presented salary ranges according to Cpl CEE Salary Guide 2023 and other data available on the market.