DevSecOps Security Specialist

Job Introduction

Serco is a partner of choice to the European Institutions and other International Organisations. For the past 30 years, we have been providing European and International Organisations a wide range of services including ICT services in support, infrastructure, operations and development as well as managing different contact centres for the key European Institutions, agencies and organisations across Europe.

What connects the ever-growing Serco workforce is a passion for delivering great service –
To keep ahead, we have to evolve continually and enhance the way we deliver our services. Everyone in Serco has a role to play, here.

Serco provides the right environment to encourage ideas and a comprehensive Best Practice support network that enables them to put their ideas into action.

We are hiring a DevSecOps in Prague.

If you like to work in a multi-cultural and dynamic environment, this opportunity can answer to your expectation.

We look forward to meeting you!  Discover the offer below and click on ‘Apply’ if you know that your skillset and talents are a suitable match for this opportunity.

At Serco, we do not only offer a career but also the opportunity to join a community where everyone’s wellbeing matters, by living out the Serco values in all we do!

Role Responsibility

Are you looking to secure a career in a public sector environment? We would love to hear from you! 

• Experience working with Developers, DevOps, and Engineering teams in a dynamic environment to promote/implement the DevSecOps program throughout the organization.
• Experience coordinating and performing vulnerability assessments through the use of automated and manual tools ( Clair, Sonarqube, etc).
• Ability to review and analyze vulnerability data application’s and determine any reported vulnerabilities that are false positives.
• Capability to prepare security vulnerability reports for management.
• Coordination and remediation of vulnerabilities within established timeframes.
• Knowledge in Python, Bash and/or other programming and scripting languages.
• Familiarity with Information Security frameworks/standards (i.e. CIS, NIST, RFC2196, etc).
• Experience configuring, implementing and leveraging computer security.
• Ability to work with APIs and Plugins to integrate security tools into established CI/CD pipelines.
• DevOps Automation: GitHub/Gitlab
• Knowledge of Kubernetes, Docker, container orchestration platforms (OpenShift, Rancher), container image registers (i.e. dockerhub, harbor)
• Knowledge of Secret Scanning, Secure code analysis, Dynamic Application Security Testing, Static Application Security Testing tools, Container Scanning,

In return, we offer a friendly, supportive and professional environment that respects your work/life balance and ultimately contributes to the delivery of public services in Belgium and around the world.

Successful Candidate

Pluses:

• Comprehension in the security areas of Key Management Systems, Certificate Management, Encryption, Penetration Testing, Vulnerability Scanning, Security and Monitoring tools, etc.
• Knowledge of Windows and Linux patch management and related information security functions (authentication, encryption, iptables, SSL, Ciphers, etc)
• DevOps Automation: Azure DevOps, Jenkins (any), Helm charts.
• Experience with Microsoft Azure

Package Description

Excellent Salary 

Corporate Benefits Package 

Chance to make a positive difference in a company passionate about diversity and inclusion.

Further information available from the Serco Europe Recruitment Team

About the Company

Why should you join Serco ?

At Serco not only is the nature of the work we do important, everyone has an important role to play.

Meaningful and vital work - You’ll contribute to methodologically intercepting challenges whilst achievements will also be recognised and celebrated.

A world of opportunity - You’ll be wholeheartedly supported with development and career progression

Great people - You’ll become an integral member of a well-defined and supportive team who believe passionately in the value of our work. We are a company passionate about diversity and inclusion. 

What we offer

• Chance to contribute to innovation in the public services sector
• A company passionate about diversity and inclusion
• Permanent employment with comprehensive Serco Benefits package.

About Serco

Under the DIGIT TM II framework contract Serco provides external service provision in Time and Means for development, consultancy and support in the field of Information Systems for the European Commission, the European Commission Executive Agencies and Joint Research Centre (JRC) on Lot 1, 2 and 3 in various locations around Europe.

Serco is a Disability Confident Employer committed to employing and retaining people with disabilities.  Disabled applicants who meet the minimum criteria for the job will be given the opportunity to demonstrate their abilities at an interview.

By joining Serco you will have unlimited access to our Global Employee Networks – SercoInspire (Gender), SercoEmbrace (Multicultural), SercoUnlimited (Disability) and In@Serco (LGBT & Networks). Serco Employee Networks, led by colleagues who are passionate about diversity, inclusion and belonging. 

Important

Any offer of employment is contingent upon you providing documents to verify your identity and employment eligibility, as required by law.

Applicants are reminded that they will be requested to produce such documentation during the recruitment process.

Please contact a member of the recruitment team if you require further details of acceptable types of documentation required for verification of identity and work authorization. 

Data Protection:

For more information on how the personal data in your application is process, please see the link Data Protection policy here. 

Serco European Agencies