DevSecOps Specialist - Vodafone GmbH

Key Responsibilities

• Design, implement, and maintain secure CI/CD pipelines that embed automated security checks and compliance controls.
• Configure and manage container orchestration with Docker and Kubernetes, ensuring secure deployment and runtime hardening.
• Integrate AWS services (ECS, EKS, IAM, GuardDuty) to support scalable, secure infrastructure.
• Automate vulnerability scanning, code analysis, and secret detection using tools such as Snyk, Trivy, and OWASP ZAP.
• Collaborate with development, QA, and security teams to remediate findings and enforce secure coding standards.
• Document security best practices, incident response procedures, and pipeline configurations.

Requirements

• Proven experience in DevSecOps, CI/CD, and container security.
• Hands‑on expertise with Docker, Kubernetes, and AWS.
• Strong scripting skills in Python or Bash for automation.
• Knowledge of security tools (Snyk, Trivy, OWASP ZAP, etc.) and threat modeling.
• Excellent communication skills and ability to work cross‑functionally.