DevSecOps Engineer (.NET)
BearingPoint
- Dublin
- Permanent
- Full-time
- Collaborate on building, maintaining, and enhancing Secure CI/CD frameworks, scaling them to enterprise levels.
- Work with a dynamic team managing hundreds of environments supporting the SDLC in an enterprise production system, involving Windows Server and various Azure components.
- Provide support for seamless deployment of application releases across test and production environments, both on-site servers and cloud infrastructure.
- Engage closely with Software Development teams, QA Engineers, and System Architects to optimize build and deployment processes across all development phases.
- Available for occasional out-of-hours responsibilities and monthly releases to the live production system.
- Minimum of 2 years of similar role experience, emphasising software development and .NET solutions.
- In-depth knowledge of Azure services and security features.
- Knowledge of security tools used for vulnerability scanning and threat detection e.g. NexusIQ, SonarQube, Nessus, Burp Suite, OASP ZAP, WhiteSource Bolt.
- Strong understanding of security best practices, risk management, and compliance frameworks.
- Strong debugging and troubleshooting skills in Windows, Azure, IIS applications, or equivalent technologies.
- Proficiency in scripting and automation using PowerShell, Azure DevOps YAML
- Proficiency in using gitflow, Trunk based development or knowledge of branching methodologies.
- Passion for innovation, creative problem-solving, and intellectual curiosity.
- Excellent consulting skills, including the ability to influence, strong verbal and written communication skills (proficiency in English), self-motivation, leadership, and facilitation skills.
- Ability to research and stay up-to-date with new technologies and assess their relevance to clients.
- Familiarity with Agile methodologies.
- Experience with Docker, Containers, and Kubernetes (K8s) is essential.
- A 3rd level degree in Computer Science (or equivalent).
- Knowledge of testing frameworks and strategies.
- Exposure to technology specification for bid and sales cycles.
- Relevant security certifications, such as: AZ-500 Azure Security Engineer Associate or SC-900 Microsoft Security, Compliance, and Identity Fundamentals.