CyberSecurity Engineer, DevSecOps

🚀 About the Team

🎯 Your Mission

✏️ Your Responsibilities

DevSecOps Strategy & Roadmap

• Assess the current DevSecOps maturity and define a clear roadmap in coordination with the Architecture Committee.
• Prioritize actions using a global risk-based approach — not only security risk — adapted to Wakam’s context.
• Define performance and reliability metrics for security processes.

Team Support & Enablement

• Support development and operations teams on day-to-day security topics.
• Put business and technical risks into perspective to help teams make informed decisions.
• Train and raise awareness among teams on security best practices, including secure coding, threat modeling, and related practices.
• Help build a sustainable DevSecOps culture across the organization.

Shift-Left Security

• Integrate SAST, DAST, and SCA tests directly into CI/CD pipelines with optimized response times.
• Design and deploy fast, reliable, parallelized security test suites with immediate feedback for developers.
• Document data flows and model attack surfaces from the design phase.

Automation & Tooling

• Deploy and configure static and dynamic analysis tools such as SonarQube, Trivy, Snyk, OWASP ZAP, and similar solutions.
• Orchestrate secure deployments through CI/CD pipelines, including automatic rollback mechanisms and multi-level validation.
• Develop custom automation tools when market solutions do not fully meet Wakam’s needs.

Versioning & Configuration Management

• Implement Infrastructure as Code (IaC) with embedded security controls using tools such as Terraform and Ansible.
• Ensure full versioning of code, infrastructure, configurations, and security policies.
• Manage secrets and certificates through dedicated solutions such as HashiCorp Vault or equivalent tools.

Monitoring & Incident Management

• Deploy and maintain security monitoring tools, including SIEM, alerting, and monitoring solutions.
• Automate anomaly detection and incident response through SOAR and automated runbooks.
• Actively contribute to the management and resolution of security incidents.

Workplace Environment Security Support

• Provide technical support to the team managing the workplace environment, including Microsoft 365, Exchange Online, and SharePoint, on security and monitoring topics.
• Contribute to integrating collaborative tools into global security policies, including authentication, conditional access, DLP, and SIEM alerts.
• Help automate recurring administration tasks and implement alerts for abnormal behaviours.

Technology Watch & Continuous Improvement

• Maintain active monitoring of DevSecOps trends, new threats, and emerging practices.
• Evaluate and integrate relevant technologies for Wakam’s environment.
• Share best practices and lessons learned internally and within the DevSecOps community.

✨ Who You Are

• 7+ years of experience in software engineering and/or operations.
• A solid development background, either as a Developer or DevOps profile.
• Strong hands-on experience in application security and infrastructure security.
• A good understanding of cloud-based production environments.
• Experience with Security Operations / SOC is a plus.

Technical Skills

• DevOps & Automation: CI/CD, Azure DevOps, GitHub Actions
• Containers: Docker, Kubernetes
• Infrastructure as Code: Terraform, Ansible
• Cloud Platforms: Azure, AWS
• Scripting: Python, Bash, PowerShell
• Application Security: OWASP, secure coding practices
• Security Tools: SAST, DAST, SCA, vulnerability scanning

Security Expertise

• Knowledge of security protocols and cryptography.
• Familiarity with compliance frameworks and standards.
• Experience using vulnerability scanning and mitigation tools.
• Strong infrastructure security practices.

🧠 What You Bring

• Strong mentoring, influence, and support skills.
• Excellent communication skills, with the ability to explain technical risks and concepts clearly.
• Proven technical leadership and change management capabilities.
• High autonomy and a proactive, solution-focused mindset.
• A 360° vision, with the ability to balance security, business, and technology needs.
• Adaptability and comfort working in a transforming environment.

🌟 Why Join Wakam?

• Being at the heart of tech-led transformation.
• Collaborating with passionate experts across disciplines.
• Joining a culture that promotes ownership, agility, and innovation.
• Benefiting from flexible working arrangements — hybrid or fully remote within the UK.

🏆 Hiring Process

1. Interview with our Talent Acquisition Partner
2. Manager interview with our Head of Information Security
3. Case study with the Digital Team
4. HRBP interview

AI-Assisted Interview Process Policy | Notion