Westhouse is one of the leading international recruitment agencies for the procurement of highly qualified experts in fields such as IT lifecycle management, SAP, engineering, commerce and specialist consultancy.
For our client we are currently looking for a CI/CD Engineering – Security & Compliance (m/f/d) - Frankfurt (50%) and Remote.
Your tasks
1. Design, implement, and maintain DevOps solutions while ensuring integrity, confidentiality, and availability of systems and tools to the program and data
2. Analysing of program requirements and design secure, robust DevOps architectures that address integration, scalability, and compliance needs.
3. Development and configuration of CI/CD pipelines with built-in security scanning and compliance checks.
4. Implementing of secure configuration, access controls, and encryption for systems, repositories, and deployment pipelines.
5. Regularly monitoring and updating systems and tools to address security vulnerabilities and ensure ongoing compliance with security policies and standards.
6. Conducting risk assessments and threat modeling to proactively identify and mitigate potential weaknesses in DevOps workflows.
7. Providing automation of infrastructure provisioning and management using tools such as Terraform, Ansible, or Open- Tofu, following best practices for security and reliability.
8. Maintaining of system and service availability, including disaster recovery planning, incident response procedures, and routine backups.
9. Performing regular audits of configurations, user access, and system logs to ensure integrity and traceability.
10. Coordination with development and other stakeholders to resolve issues, implement new features, and keep all systems running optimally while adhering to confidentiality and data protection requirements.
11. Creating and maintain comprehensive documentation on architecture, configurations, processes, and incident response plans.
12. Expose security tools to developers in a self-service fashion
13. Documentation of frequently performed tasks for both internal and external customers
14. Increate automation efforts in automatically creating expansive SBOMs, KBOMs
15. Vulnerability Management & Security Hardening