Role: FullStack Devops
Duration– 6 months
Location: Warsaw, Poland , also flexible with remote within EU region.
Responsibilities
• Support secure application developmentpractices and a secure development mentality
• Identifying, communicating, and providingtargeted remediation of vulnerabilities
• Developing and updating security patternsaligned with security requirements
• Identifying application securityrequirements for projects
• Coordinating and collaborating withmultiple teams to ensure the confidentiality, integrity, and availability ofPrudential assets that meets business needs
• Performing other security-relatedprojects that may be assigned according to skills
• DevSecOps,integrating security into CI/CD pipelines
• Automation ofsecurity controls and standards
Skills
• Familiar withintegrating multiple security tools into CI/CD Pipelines (Gitlab preferred)
• Working experience toimplement and test automation scripts and setups
• Familiar with integrating security toolsand providing vulnerability assessments. Leveraging tools such as Burp SuiteEnterprise, Checkmarx, NowSecure, OWASP ZAP
• Understanding of OWASP Top 10 and SANSTop 25 vulnerabilities and how to remediate
• Working knowledge of using API tointeract with web services provided by tools
• Conduct tool evaluations and build proofof concepts
• Integrate withreporting tools to provide consolidated view
• Ability to turn technical standards intoworking practice
• Assist in drivingconsistency and standardization of DevSecOps services across the enterprise
• Strong Automationskills, Python and Terraform preffered.
• Maintain documentationsand user guides
• Knowledge of security within cloudenvironment, especially around networking, security and administration
• A motivated and flexible approach to workin an adapting fast-moving Agile environment utilizing technology and tools suchas Jira, Jira Align, Miro, Confluence.
• Can demonstrate strong performance ethosand personal commitment for outstanding customer service
• Ability to interface with both technicaland non-technical teams
• Willingness to train and upskill on acontinuous basis
• Excellent communication, time managementand organizational skills