Lead DevSecOps Engineer Consultant @ Capgemini | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
Lead DevSecOps Engineer Consultant jobs in Phoenix, AZ
200+ applicantsPosted by Agency
company-logo

Capgemini · 5 hours ago

Lead DevSecOps Engineer Consultant

ftfMaximize your interview chances
ConsultingInformation Technology
check
H1B Sponsor Likelynote
Hiring Manager
Amy Beth Andrews
linkedin

Insider Connection @Capgemini

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Build pipelines to deploy infrastructure and applications to Azure and AWS using GitHub Actions
Leverage Infrastructure as Code to create integrated workflows
Provide release gates that are aligned with source control management approaches
Seamlessly integrate security features throughout the software development life cycle (SDLC)
Identify and mitigate security risks, implementing effective security controls
Develop applications and secure code to protect against risks and data breaches
Collaborate with cross-functional teams to ensure security alignment
Regularly demonstrate the new capabilities available in pipeline to diverse audiences
Seek feedback and direction from stakeholders on how to improve the reusable pipelines
Experience working with GitHub Actions and Terraform, building pipelines to deploy infrastructure and applications to Azure and AWS landing zones
Deep knowledge and understanding of DevOps best practices involving Automation, CI/CD, deployments, approval gates, hooks, and various methods for deploying software applications through multiple environments to target platforms
Experience with software testing tools and frameworks
Extensive experience and proficiency with GIT source code control and different branching strategies such as 'trunk based development'
Ability to direct and manage dev teams on best practices and usage patterns for DevOps CI/CD and automation leading to more secured software application deployments
Well versed in software bill of material and software supply chain analysis and safe practices
Experience creating and administering CI/CD tooling such as GitHub Actions, Azure DevOps, Jenkins
Experience with and deep understanding of difference vulnerability scanning techniques and their relevant tools such as SAST, DAST, SCA, IAST security scanning
Solid understanding of SDLC processes, modern programming stacks and their relevant vulnerabilities, .NET and Java
Operational experience and knowledge in common security scanning tooling and integration into CI/CD pipelines such as Azure DevOps, GitHub, Jenkins. e.g. Wiz.io Veracode, AppScan, CheckMarx, Snyk, Contrast, Sonar, Synopsis
Familiarity with OWASP and NIST standards and best practices for application security
Ability to assess false positives in security scanning tooling and give feedback and guidance to development teams on security scanning results
Experience adding security scanning tooling tasks to pipeline
Ability to perform automation and scanning of applications written or created with .NET and Java development stacks
Participate in design and code reviews, aligning with architectural goals
Ability to showcase and communicate technical solutions to business stakeholders
Experience leading teams a plus

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

CI/CD pipelinesGitHub ActionsTerraformDevOps best practicesGIT source controlSecurity scanning techniquesAzureAWSAutomationSoftware testing toolsSoftware supply chain analysisCI/CD toolingSDLC processes.NETJavaOWASP standardsNIST standardsFalse positives assessmentCode reviewsTechnical communication

Required

10-15 years of experience in Consulting Account Management, Business Development, and Sales within the realm of IT Outsourcing (ITO) deals
Experience working with GitHub Actions and Terraform, building pipelines to deploy infrastructure and applications to Azure and AWS landing zones
Deep knowledge and understanding of DevOps best practices involving Automation, CI/CD, deployments, approval gates, hooks, and various methods for deploying software applications through multiple environments to target platforms
Experience with software testing tools and frameworks
Extensive experience and proficiency with GIT source code control and different branching strategies such as 'trunk based development'
Ability to direct and manage dev teams on best practices and usage patterns for DevOps CI/CD and automation leading to more secured software application deployments
Well versed in software bill of material and software supply chain analysis and safe practices
Experience creating and administering CI/CD tooling such as GitHub Actions, Azure DevOps, Jenkins
Experience with and deep understanding of difference vulnerability scanning techniques and their relevant tools such as SAST, DAST, SCA, IAST security scanning
Solid understanding of SDLC processes, modern programming stacks and their relevant vulnerabilities, .NET and Java
Operational experience and knowledge in common security scanning tooling and integration into CI/CD pipelines such as Azure DevOps, GitHub, Jenkins. e.g. Wiz.io Veracode, AppScan, CheckMarx, Snyk, Contrast, Sonar, Synopsis
Familiarity with OWASP and NIST standards and best practices for application security
Ability to assess false positives in security scanning tooling and give feedback and guidance to development teams on security scanning results
Experience adding security scanning tooling tasks to pipeline
Ability to perform automation and scanning of applications written or created with .NET and Java development stacks
Participate in design and code reviews, aligning with architectural goals
Ability to showcase and communicate technical solutions to business stakeholders
Bachelor’s degree in computer science, Information Security, or a related field (or equivalent experience)

Preferred

Experience leading teams a plus

Benefits

401(k) Savings Plan: matched 150% up to 6%. Our 401k is in the top 1% of 401(k) plans offered in the US!
Employee Stock Option Plan
Potential Annual Individual Bonus Plan
Medical/Prescription/Dental/Vision Coverage: low premium and deductible with free preventative care
Life Insurance: provided at 2x base salary plus long term and short term disability
100% Company-paid Mobile Phone Plan
Personal Time Off (PTO): ensuring a balance of work and home life
Career Planning and Coaching Program
Continuing Education: $12,000 Annual Tuition Reimbursement plus access to over 20,000 online courses and certifications through Capgemini University, as well as many offerings through Coursera and Degreed.
Paid Parental Leave: eligibility up to 6 weeks
Adoption Assistance: up to $5,000
Perks and Discount Programs for Health, Fitness, Auto and many more
Counseling, Assistance, and other Support Programs

Company

Capgemini

company-logo
Capgemini is a software company that provides consulting, technology, and digital transformation services.

H1B Sponsorship

Capgemini has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (2920)
2022 (4037)
2021 (3776)
2020 (5124)

Funding

Current Stage
Public Company
Total Funding
unknown
1999-04-01IPO· epa:CAP

Leadership Team

leader-logo
Aiman Ezzat
CEO, Capgemini Group
linkedin
leader-logo
Anirban Bose
CEO of Americas Strategic Business Unit
linkedin
Company data provided by crunchbase
logo

Orion

Your AI Copilot