We are looking for an outstanding DevOps Engineer to join a high profile platform at a Central Government department. Hybrid working with occasional travel once or twice a month to Bristol.
Your skills and experience:
1. An Application Security background with associated experience and qualifications
2. Excellent written and verbal communication skills
3. Have a push left mentality
4. Help engineers understand vulnerabilities from various sources and how to prioritise them
5. Have knowledge of the Secure Software Development Lifecycle
6. Understand and establish the OWASP ASVS across the platform
7. Understand and assess current software development practices against OWASP SAMM
8. Understand and be able to communicate the application of Secure Coding Practices
9. Knowledge of current browser security features
10. Knowledge of best practice for both front and backend applications
11. Knowledge of Dynamic Application Security Testing and implementation
12. Knowledge of Static Application Security Testing and implementation
The following would be beneficial:
1. Knowledge of Scala or have a software development background
2. Experience of establishing a security champion programme or developing and fostering a security community
3. Knowledge of the PCI DSS
4. An understanding of Supply Chain security, standards, and best practice
#J-18808-Ljbffr