• Minimum 10 years of experience required.
• Experience with different SAST & DAST & VAPT tools is mandatory with good understanding of OWASP top 10, SANS Top 25 and other industry best standards, frameworks and baseline such as NIST, CIS etc.
• Experience in \'Secure-by-design\' approaches and ensuring it is part of quality decisions by default and working exposure with other stakeholders such a programme managers or service managers to ensure they own this.
• Full awareness of the latest developments in the security and technology industry including best practice and industry standards.
• Minimum 3+ years experience in one or more continuous integration tools \xe2\x80\x93 e.g. Jenkins, Bamboo. Performing DevOps tool integration, configuration for SecDevOps
• Strong architecture knowledge for developing security solutions and best practices, focusing predominantly on cloud platforms (AWS/Azure)
• Usage of CICD processes including the integration of security & quality tooling. Knowledge of DevOps processes and tools (Ansible, Jenkins, Git, Azure DevOps)
• Security Scanning tools (Static Code Analysis, Opensource and Container Scanning tools).
• Experience in working within modern application development and engineering teams using DevOps & Agile methodologies
• Building and deploying Docker containers, Kubernetes Orchestration, and using OpenShift. Designing automation and code & scripting in Terraform and/or python and/or bash
• Create well-written documentation and procedures and create dashboard and reports to provide transparency and visibility for the results of the strategic initiatives
• Guide the implementation teams on best practices, verify solutions specifications are being adhered to, and communicate progress.

Required Skills