54 Internet Stellen in Le Grand-Saconnex gefunden

Diese Jobsuche abonnieren
Bitte ausfüllen
Mit dem Absenden des Formulars erklären Sie sich mit unseren AGB und der Daten­schutz­erklärung einverstanden.
Bitte überprüfen Sie Ihren E-Mail Account, um die Anmeldung abzuschliessen.

DevSecOps Security Engineer / Genève / Anglais

Bewertung abgegeben
DevSecOps Security Engineer / Genève / Anglais

Security Engineer
As a DevSecOps security engineer, you'll act as first line of defense for the digital systems, shifting left security by implementing security tests within the CI/CD pipelines, helping the dev teams fix vulnerabilities earlier in the development stages, modeling threats, hardening our infrastructures, conducting some red team activities, gathering data to better detect/predict attacks attempts, contributing to the global security awareness

- Adapt your communication according to the target audience
- Ensure the communication has reached and well understood by the target audience
- Establish relevant communication channel
- Act as primary contact and link between the Department and other departments for all IT security aspects
- Establish relationship with peers
- Proactively share Ideas
- Challenge your peers constructively
- Work closely with cross-functional teams (Developers, Scrum Masters, Architects...)
- Take the full ownership in your scope
- Adopt a common sense and be respectful with your colleagues
- Focus on objectives
- Develop a collaborative mind-set
- Self-Manage your time and activities
- Continuously train yourself to improve your skills
- Act as a team player
- Be a key player in the group dynamic
- Develop a customer-oriented mind-set and a culture of trust and transparency
- Focus on customer satisfaction and quality
- Regularly review alignment with Product Groups / Shared Services vision
- Contribute in Communities of Practices
- Establish yourself as expert in your domain of expertise -> referent for other teams
- Understand your working environment and build your own networks
- Train and coach Internal teams, our Maisons, and partners to ensure successful secured implementations
- Manage security aspects linked with several partners multiple Maisons, Agencies and Web sites
- Plan and coordinate Pentests
- Handle several types of security activities such as Pentest, Scans, and Security Intelligence
- Setup hardening of specific Web related IT components
- Collaborate with the DevOps team to set-up/improve security test automation
- Support the Development team to mitigate/solve security vulnerabilities


- Apply and promote processes defined within the Department /Pillar/Group/Team and make sure they are well understood
- Follow-up your activities from end to end
- Adjust, augment, and suggest improvement to existing processes within the Department
- Identify improvements of existing processes in order to gain efficiency, productivity and overall satisfaction
- Rely and respect Shared Services best practices
- Be responsible of your quality and apply auto-control
- Be accountable of defined gates
- Proactively identify and resolve risks/impediments. Escalate appropriately when needed
- Propose solutions to solve complex issues
- Collaborate with your peers
- Raise impediments which block you in your daily activities
- Address cross team dependencies or issues with your peers
- Deploy and enrich the different security components required to ensure the appropriate level of security is in place according to the group security policies

- Focus on quality: delivery on time, on budget and beyond expectations
- Identify, manage risks, define the corresponding mitigation plan and escalate to the appropriate level as necessary
- Apply guidelines, frameworks, and best practices defined by Communities of Practices

SPECIFIC SKILLS RELATED TO DevOps Security engineering:
- Application security testing (SAST,DAST,IAST)
- Threat modelling
- Security as code
- Pentesting
- Container security tools (Twistlock, Aqua)
- Web Application Firewall (F5, AWS, Akamai Kona Site Defender)
- Operating system: Linux
- Contenairization: Docker, Kubernetes
- Cloud architecture and security: AWS, Aliyun
- Core Internet technologies: TCP/IP, DNS, http, TLS...
- Programming language : Java, Python...
- Gitops

Genève / Lausanne / Vaud / Zürich / Valais / Genève-Cointrin / Cointrin

Bewertung hinzufügen

Geben Sie hier Ihre Bewertung für die Firma Davidson Consulting Switzerland ab!

Bewertung abgegeben