We need a full-time consultant to assist with the following tasks on site with us:
- Setup and configuration of security tools (CodeQl, JFrog and Qualys) on GitHub
- Automating a CD pipeline on GitHub for the toolchain
- Integration with Azure DevOps build pipeline
- Supporting cybersecurity risk assessment activities
- Supporting security architecture reviews and threat modelling to integrate security requirements into product designs
- Conduct security training and awareness sessions for developers
The following basic knowledge is required:
- Good understanding of common security threats (e.g., OWASP Top 10) and how to mitigate them
- High level programming language, scripting, web etc.