Senior Security Engineer - DevSecOps

• Integrate security practices into the DevOps lifecycle to ensure secure development, deployment, and operation of software.
• Collaborate with development, operations, and security teams to develop, implement, and improve security measures.
• Conduct security assessments and provide actionable recommendations to enhance our security posture.
• Stay informed on the latest security trends, technologies, and best practices.
• Implement automated security checks in CI/CD pipelines.
• Conduct threat modeling of applications, including analyzing and assessing security risks.
• Train and mentor other team members on DevSecOps best practices and procedures.
• Administer, configure, and fine-tune security tools and systems to ensure an optimal security posture.
• Monitor and ensure service continuity, intervening as necessary to restore functionality.
• Perform log analysis, forensic investigations, and root cause analysis.

Do you have experience in Scripting?, Are you interested in working in a pleasant atmosphere with the possibility of regularly working from home? Yes, that's how it works with us!, * Minimum of 5 years of experience in DevSecOps or a related field.

• Experience integrating security practices within a DevOps environment.
• Knowledgeable in handling various types of security incidents, including threat modeling, security automation, and application security.
• Experience with security tools like SAST, DAST, dependency checkers, and SIEM.
• Strong understanding of network protocols, security architecture, and cloud security (AWS, Azure, or GCP).
• Proficiency in scripting and programming languages (e.g., Python, Shell) for automation.
• Experience with CI/CD tools (e.g., Jenkins, GitLab CI/CD) and container orchestration (e.g., Kubernetes, Docker).
• Strong analytical skills with the ability to quickly assess and remediate security vulnerabilities.
• Excellent communication and interpersonal skills to work effectively with cross-functional teams.

Technical knowledge mastered or to be developed together:

Preferred Certifications: GCIH, CISSP, CEH, CISM, OSCP, AWS Security Specialty, Azure Security Engineer Associate.

Soft skills:

• Clear and effective communication
• Strong analytical and problem-solving mindset
• Ability to work under pressure
• Teamwork and collaboration
• Critical and adaptive thinking
• Leadership and integrity

• A team of enthusiastic, professional colleagues in which there is an excellent atmosphere and where expertise is shared
• Tools and infrastructure that are consistently at the forefront of innovation
• Personalised career support to help you with your development
• Many training opportunities and certifications
• A company with a friendly working atmosphere which is dynamic and oriented towards innovation.
• Fun times - a food truck, barbecue, after-work events, family day!
• Complete salary package
• Teleworking opportunities (up to 3 days a week)

You will be joining the Cybersecurity team, whose mission is to provide an agile and cross-functional cybersecurity service to both NRB and its customers, in order to protect them and prevent security attacks, and if any to limit their consequences as much as possible. The team comprises 23 colleagues who are experts in various areas and is part of the Cybersecurity department.