Consultant en Sécurité Applicative et DevSecOps

Consultant en Sécurité Applicative et DevSecOps

Posted 1 day ago by Jefferson Frank

Apply
Negotiable
Undetermined
Undetermined
Switzerland, Geneva, Plan-les-Ouates
Apply
Application Programming Interface (API) Application Security Authentications Authorisation (Computing) AWS Identity And Access Management (IAM) Azure DevOps Cloud Computing Cloud Technology Code Review Data Encryption Data Protection Strategy Data Security DevOps DevSecOps Encryption GraphQL gRPC Information Technology Infrastructure Library JSON Web Token (JWT) Management Microsoft Azure Multi-Factor Authentication OAuth OpenID Open Web Application Security Project (OWASP) Pluggable Authentication Module (PAM) Release Management RESTful API Runbook Security Assertion Markup Language (SAML) Single Sign-On (SSO) Web Applications WebSocket

Summary: The role involves providing consultancy in Application Security and DevSecOps for a client in Vaud, focusing on the analysis and evaluation of application security. The consultant will work on defining secure application life cycles, development standards, data security, and API security, while delivering various standards and supporting DevOps teams in integrating security best practices. The position requires a strong understanding of Secure SDLC and DevSecOps methodologies, along with experience in various security frameworks and tools. The contract duration is from February 3, 2025, to December 19, 2025.

Key Responsibilities:

  • Define application life cycles (Secure-SDLC) and ensure code security, release management, data security, and traceability.
  • Contribute to the definition of development standards (DevSecOps) and standardize practices with system and development teams.
  • Assist in securing cloud application tenants and implement data anonymization and code review mechanisms.
  • Contribute to API security, including authentication, authorization, encryption, and protection against DoS/DDoS attacks.
  • Deliver Secure-SDLC standards and support DevOps teams in integrating security practices.
  • Develop DevSecOps processes and custom Azure DevOps scripts, and monitor real-time code analysis tools.
  • Provide documentation, follow-up reports on recommendations, and a Runbook.

Key Skills:

  • Strong knowledge of Secure SDLC and DevSecOps practices, including CI/CD/CS.
  • Expertise in IAM, PAM, CIAM, and authentication frameworks such as SSO, OpenID Connect, SAML, OAuth, and JWT.
  • Proficient in API technologies including SOAP, RESTful, GraphQL, gRPC, WebSocket, and WebHook.
  • Experience with web application firewalls (WAF) and strong authentication methods (2FA, MFA, OTP, passwordless).
  • Knowledge of data anonymization, compliance with Data Protection regulations, and experience with SAST/DAST tools like Snyk and SonarCloud.
  • Familiarity with OWASP Top 10 and ITIL v4 certification.

Salary (Rate): undetermined

City: Geneva

Country: Switzerland

Working Arrangements: undetermined

IR35 Status: undetermined

Seniority Level: undetermined

Industry: IT

Apply
Similar Jobs
Loading data...