DevSecOps Remediation Manager
il y a 1 mois
About the Job
Neotrust is a security innovation company that helps Executives, CISO, CIO and CTO to successfully complete their security transformation and integrate cyber innovation into their long-term security strategy.
A large customer with international footprint, is looking for a DevSecOps Remediation Manager.
THE ROLE - JOB PURPOSE
The DevSecOps Remediation Manager is responsible for managing and supporting business teams in remediating application vulnerabilities (AppSec) in a context where Cybersecurity is named as a mandatory component of the information system.
As a consequence, the Customer Cybersecurity team composed of 30 people:
- Maintains the international cybersecurity framework (the rules)
- Delivers operational cybersecurity services (e.g. vulnerability scanner, EDR, SOC), mainly as a service center
- Monitors and report global cybersecurity posture
- Operates the cybersecurity of the international components technically under responsibility.
YOUR PROFILE
As a confirmed DevSecOps consultant (M/F), you will join the Cybersecurity department, a multidisciplinary, caring and human-sized team.
Coming from a Bac+5 level training, you have at least 3 to 5 years of experience in a similar position, and you have a strong interest in DevOps/DevSecOps technologies and culture. Your previous experiences have allowed you to develop the following skills and knowledge:
In-depth knowledge of DevSecOps principles and practices, and how they apply in a customer-facing context:
- Knowledge of JavaScript, Java, Python, dotnet, Shell and Go languages, and of the following IDEs: VSCode, JetBrains, Android Studio, IntelliJ IDEA
- Knowledge of "Infrastructures as Code (IaC)" technologies: Terraform
- Application security (OWASP TOP 10, secrets management, MITRE ATT@CK, etc.)
- Cloud (GCP, Azure, OCI) and DevOps culture (CI/CD, containerization, etc.)
- Proficient in DevSecOps tools like Kubernetes, Dockerfile, Ansible, Helm, GitHub, etc., for continuous integration and delivery.
- Previous experience & expertise with AppSec solution (preferably Checkmarx and Qualys) would be valuable.
- Mastery of workstation operating systems, development and security tools.
- Ability to work closely with development, operations and security teams.
- Ability to analyze complex security issues and find effective solutions.
- Understanding of different technological environments and platforms.
- Ability to understand and anticipate customer needs and respond effectively.
- Constantly stay informed of the latest trends and threats in new technologies and security to offer the best solutions to customers.
Furthermore, you have good organizational and rigorous qualities. You have excellent interpersonal and listening skills which allow you to work in a team and independently. Curious, you are also proactive and fully involved in your projects. Your qualities of analysis, synthesis, your ability to act on problem solving, as well as confirmed technical mastery are your assets to take charge of this position. A good level of English is desired.
Beyond your technical skills, you want to continue to progress, learn and demonstrate curiosity about new developments around cybersecurity and DevSecOps. You know how to rise to the occasion and challenge what exists. You like to share your knowledge and discoveries with your team.
Your good interpersonal skills and sense of communication (both written and oral) allow you to build a relationship of trust with your colleagues and customers.
YOUR MISSION
The Remediation Manager will be in charge of at DevOps / AppSec level to:
- Contribute to the design of the application architecture (cybersecurity expert)
- Onboard and animate product teams on security tests
- Support clients to integrate security from the start into their projects
- Design and delivery of awareness/training sessions dedicated to cybersecurity topics
- Train and raise awareness among development teams and end users about security best practices (Cyber by Design)
- Identify, assess and remediate application vulnerabilities
- Support for remediating vulnerabilities and helping with capitalization at the company level
- Contribute to the continuous improvement of the DevSecOps offer and implementation of new DevSecOps activities
- Support and collaborate with product teams to define good development practices, and Review User Stories, and to carry out the risk analysis of the product
- Empower product teams to trigger security audits with available tools for the product team and associated procedures (SAST, DAST, SCA, repository scan, etc.), and Impacts evaluation of remediation action on the product
- Track progress status on previous security action plan and priorities
- Deployment, functional configuration, fine tuning of tools, automation, centralization of results
- Definition of cybersecurity indicators (prerequisite: fine tuning)
- Significantly lead to improvement of those indicators to demonstrate the value of the approach from a security perspective
YOUR SKILLS
You are recognized for your leadership, your sense of customer service, and your ability to unite and lead teams. You have excellent interpersonal skills and enjoy working in a complex organization with strong interdependence.
You are curious, and constantly on the lookout for the latest developments in the world of databases. You are used to working in an international context and you speak English fluently
As you probably understood in the previous “missions” paragraph, here are the main skills that are expected from the candidate:
CYBERSECURITY SKILLS
Automation
- Formally describe infrastructure automation, and Able to generate KPI
Collaboration
- Able to formally describe tasks and definition of done, and able to estimate time and complexity of efforts Architecture and security
- Understand application architecture, and know in depth security controls
- Understand complementarity of each security test
Security technology (secret management, secret scanning, SAST, DAST, SCA, IAC Security)
- Able to give feedback on technology to cover needs
- Share technological knowledge to promote self service approach
- Optional: have been part of security deployment project
SOFT SKILLS
Leadership: Trust, Support collaboration and Communication
Human skills: Open minded, Motivated, and Autonomous
Transformation: Adapt and learn, and Embody innovation
Languages
- French speaking & writing
- English speaking & writing
Work experience:
- You have at least 3 to 5 years of experience in operational information security management with efficiency and ability to make things change.
Minimum education level:
- You own a master degree in IT, or have significant experience in a similar job position ?
You are a funny man/woman and want to work with a team of security professionals in a large French company with international journey ?
Contact
job@neotrust.io
-
DevSecOps Remediation Manager
il y a 1 mois
Greater Lille Metropolitan Area, France Neotrust Temps pleinAbout the JobNeotrust is a security innovation company that helps Executives, CISO, CIO and CTO to successfully complete their security transformation and integrate cyber innovation into their long-term security strategy.A large customer with international footprint, is looking for a DevSecOps Remediation Manager.THE ROLE - JOB PURPOSEThe DevSecOps...
-
DevSecOps Remediation Manager
il y a 1 mois
Greater Lille Metropolitan Area, FR Neotrust Temps pleinAbout the JobNeotrust is a security innovation company that helps Executives, CISO, CIO and CTO to successfully complete their security transformation and integrate cyber innovation into their long-term security strategy.A large customer with international footprint, is looking for a DevSecOps Remediation Manager.THE ROLE - JOB PURPOSEThe DevSecOps...
-
DevSecOps Manager
il y a 1 mois
Lille, France Source Technology Temps pleinDevSecOps Manager 12 month contract Hybrid Rates DOE The DevSecOps Manager is responsible for managing and supporting business teams in remediating application vulnerabilities (AppSec) in a context where Cybersecurity is named as a mandatory component of the information system. Role Contribute to the design of the application architecture Onboard...
-
DevSecOps Manager
il y a 2 semaines
Lille, France Source Technology Temps pleinDevSecOps Manager 12 month contract Hybrid Rates DOE The DevSecOps Manager is responsible for managing and supporting business teams in remediating application vulnerabilities (AppSec) in a context where Cybersecurity is named as a mandatory component of the information system. Role Contribute to the design of the application architecture Onboard...
-
DevSecOps Manager
il y a 1 mois
Lille, France Source Technology Temps pleinDevSecOps Manager 12 month contract Hybrid Rates DOE The DevSecOps Manager is responsible for managing and supporting business teams in remediating application vulnerabilities (AppSec) in a context where Cybersecurity is named as a mandatory component of the information system.Role Contribute to the design of the application architecture Onboard and animate...
-
DevSecOps Manager
il y a 2 semaines
Lille, France Source Technology Temps pleinDevSecOps Manager 12 month contract Hybrid Rates DOE The DevSecOps Manager is responsible for managing and supporting business teams in remediating application vulnerabilities (AppSec) in a context where Cybersecurity is named as a mandatory component of the information system.Role Contribute to the design of the application architecture Onboard and animate...
-
DevSecOps Manager
il y a 1 mois
Greater Lille Metropolitan Area, France Source Technology Temps pleinDevSecOps Manager 12 month contract Hybrid Rates DOE The DevSecOps Manager is responsible for managing and supporting business teams in remediating application vulnerabilities (AppSec) in a context where Cybersecurity is named as a mandatory component of the information system.Role Contribute to the design of the application architecture Onboard and animate...
-
DevSecOps Manager
il y a 1 mois
Greater Lille Metropolitan Area, FR Source Technology Temps pleinDevSecOps Manager 12 month contract Hybrid Rates DOE The DevSecOps Manager is responsible for managing and supporting business teams in remediating application vulnerabilities (AppSec) in a context where Cybersecurity is named as a mandatory component of the information system.Role Contribute to the design of the application architecture Onboard and animate...
-
Ingénieur(e) R&D DevSecOps
Il y a 2 mois
Lille, France Exotec Temps pleinChez Exotec, nous mettons l’excellence technologique au service de la redéfinition des relations entre humains et robots. A travers le monde, nos solutions révolutionnent la façon dont nos clients délivrent leurs produits aux consommateurs finaux. Nous contribuons au succès des plus grandes marques du commerce et de l’industrie, tout en améliorant...
-
Ingénieur(e) R&D DevSecOps
il y a 2 semaines
Lille, France Exotec Temps pleinChez Exotec, nous mettons l’excellence technologique au service de la redéfinition des relations entre humains et robots. A travers le monde, nos solutions révolutionnent la façon dont nos clients délivrent leurs produits aux consommateurs finaux. Nous contribuons au succès des plus grandes marques du commerce et de l’industrie, tout en améliorant...
-
Expert cybersécurité
il y a 2 semaines
Lille, Hauts-de-France Coriom Conseil Temps pleinidentify, assess and remediate application vulnerabilitiesContribute to the continuous improvement of the DevSecOps offer and implementation of new DevSecOps activitiesDeployment, functional configuration, fine tuning of tools, automation, centralization of resultsCompétences techniques"javascript, java, python, dotnet, shell, go" - Confirmé -...
-
Expert cybersécurité
il y a 1 mois
Lille, Hauts-de-France Coriom Conseil Temps pleinidentify, assess and remediate application vulnerabilitiesContribute to the continuous improvement of the DevSecOps offer and implementation of new DevSecOps activitiesDeployment, functional configuration, fine tuning of tools, automation, centralization of resultsCompétences techniques"javascript, java, python, dotnet, shell, go" - Confirmé -...
-
Incident manager informatique
il y a 1 semaine
Lille, France Insitoo Freelances Temps pleinBasée à Lille, Lyon, Nantes, Grenoble et Bruxelles, Insitoo Freelances est une société du groupe Insitoo, spécialisée dans le placement et le sourcing des Freelances IT et Métier. Depuis 2007, Insitoo Freelances a su s?imposer comme une référence en matière de freelancing par son expertise dans l?IT et ses valeurs de transparence et de proximité....
-
DevSecOps H/F
il y a 2 semaines
Lille, France Externatic Temps pleinPrésentation de la sociétéUnderguard, c’est la branche recrutement dédiée cybersécurité du groupe Externatic, cabinet de recrutement apportant son expertise depuis plus de 10 ans auprès d’entreprises pour la captation des profils pénuriques de l’IT et la Cyber.Rejoignez notre communauté sur LinkedIn !MissionJe suis Thomas, Consultant sénior...
-
DevSecOps H/F
il y a 4 semaines
Lille, France Externatic Temps pleinPrésentation de la sociétéUnderguard, c’est la branche recrutement dédiée cybersécurité du groupe Externatic, cabinet de recrutement apportant son expertise depuis plus de 10 ans auprès d’entreprises pour la captation des profils pénuriques de l’IT et la Cyber.Rejoignez notre communauté sur LinkedIn !MissionJe suis Thomas, Consultant sénior...
-
Healthcare Regulatory-Manager---Europe
Il y a 2 mois
Lille, France Laboratoires Anios Temps pleinEcolab Healthcare is looking for a Regulatory Affairs Manager to join the Healthcare RA Leadership Team for Europe. The Manager leads a Regulatory Affairs team dedicated to the preparation, maintenance of technical files as well as of innovations and is a key member of the EU RA Healthcare Leadership Team. The Manager leads the regulatory affairs...
-
WHIZE Lille
il y a 1 mois
Lille, France WHIZE Temps pleinOffre d’emploi pour un CDI : Consultant Technique DevOps (CI/CD)WHIZE est spécialisée dans le développement de solutions sur mesure en architecture Serverless (Azure, Amazon WS, Google CP) et de solutions basées sur l'écosystème Microsoft 365 (SharePoint, Teams, Power Platform).Missions:Mise en place de la stratégie d’automatisation et à sa...
-
WHIZE Lille
il y a 1 mois
Lille, Nord, France WHIZE Temps pleinOffre d’emploi pour un CDI : Consultant Technique DevOps (CI/CD)WHIZE est spécialisée dans le développement de solutions sur mesure en architecture Serverless (Azure, Amazon WS, Google CP) et de solutions basées sur l'écosystème Microsoft 365 (SharePoint, Teams, Power Platform).Missions:Mise en place de la stratégie d’automatisation et à sa...
-
Data Integrity Specialist
Il y a 2 mois
Lille, France LFB Temps pleinQUELLES MISSIONS VOUS SERONT CONFIEES ? Directement rattaché.e à la Direction Qualité du site industriel de Lille, vous êtes garant.e de la politique Data Integrity (DI) et de la bonne mise en œuvre de la réglementation associée sur le site. Vous êtes responsable du suivi du programme Data Integrity et des plans de remédiation définis avec...
-
Data Integrity Specialist
il y a 2 semaines
Lille, France LFB Temps pleinQUELLES MISSIONS VOUS SERONT CONFIEES ? Directement rattaché.e à la Direction Qualité du site industriel de Lille, vous êtes garant.e de la politique Data Integrity (DI) et de la bonne mise en œuvre de la réglementation associée sur le site. Vous êtes responsable du suivi du programme Data Integrity et des plans de remédiation définis avec...
