About the role
π About the Team
π― Your Mission
βοΈ Your Responsibilities
DevSecOps Strategy & Roadmap
- Assess the current DevSecOps maturity and define a clear roadmap in coordination with the Architecture Committee.
- Prioritize actions using a global risk-based approach β not only security risk β adapted to Wakamβs context.
- Define performance and reliability metrics for security processes.
Team Support & Enablement
- Support development and operations teams on day-to-day security topics.
- Put business and technical risks into perspective to help teams make informed decisions.
- Train and raise awareness among teams on security best practices, includingΒ secure coding,Β threat modeling, and related practices.
- Help build a sustainable DevSecOps culture across the organization.
Shift-Left Security
- IntegrateΒ SAST, DAST, and SCAΒ tests directly into CI/CD pipelines with optimized response times.
- Design and deploy fast, reliable, parallelized security test suites with immediate feedback for developers.
- Document data flows and model attack surfaces from the design phase.
Automation & Tooling
- Deploy and configure static and dynamic analysis tools such asΒ SonarQube, Trivy, Snyk, OWASP ZAP, and similar solutions.
- Orchestrate secure deployments through CI/CD pipelines, including automatic rollback mechanisms and multi-level validation.
- Develop custom automation tools when market solutions do not fully meet Wakamβs needs.
Versioning & Configuration Management
- ImplementΒ Infrastructure as Code (IaC)Β with embedded security controls using tools such asΒ TerraformΒ andΒ Ansible.
- Ensure full versioning of code, infrastructure, configurations, and security policies.
- Manage secrets and certificates through dedicated solutions such asΒ HashiCorp VaultΒ or equivalent tools.
Monitoring & Incident Management
- Deploy and maintain security monitoring tools, includingΒ SIEM, alerting, and monitoring solutions.
- Automate anomaly detection and incident response throughΒ SOARΒ and automated runbooks.
- Actively contribute to the management and resolution of security incidents.
Workplace Environment Security Support
- Provide technical support to the team managing the workplace environment, includingΒ Microsoft 365, Exchange Online, and SharePoint, on security and monitoring topics.
- Contribute to integrating collaborative tools into global security policies, including authentication, conditional access, DLP, and SIEM alerts.
- Help automate recurring administration tasks and implement alerts for abnormal behaviours.
Technology Watch & Continuous Improvement
- Maintain active monitoring of DevSecOps trends, new threats, and emerging practices.
- Evaluate and integrate relevant technologies for Wakamβs environment.
- Share best practices and lessons learned internally and within the DevSecOps community.
β¨ Who You Are
- 7+ years of experienceΒ in software engineering and/or operations.
- A solid development background, either as aΒ DeveloperΒ orΒ DevOpsΒ profile.
- Strong hands-on experience inΒ application securityΒ andΒ infrastructure security.
- A good understanding ofΒ cloud-based production environments.
- Experience withΒ Security Operations / SOCΒ is a plus.
Technical Skills
- DevOps & Automation: CI/CD, Azure DevOps, GitHub Actions
- Containers: Docker, Kubernetes
- Infrastructure as Code: Terraform, Ansible
- Cloud Platforms: Azure, AWS
- Scripting: Python, Bash, PowerShell
- Application Security: OWASP, secure coding practices
- Security Tools: SAST, DAST, SCA, vulnerability scanning
Security Expertise
- Knowledge of security protocols and cryptography.
- Familiarity with compliance frameworks and standards.
- Experience using vulnerability scanning and mitigation tools.
- Strong infrastructure security practices.
π§ What You Bring
- Strong mentoring, influence, and support skills.
- Excellent communication skills, with the ability to explain technical risks and concepts clearly.
- Proven technical leadership and change management capabilities.
- High autonomy and a proactive, solution-focused mindset.
- A 360Β° vision, with the ability to balance security, business, and technology needs.
- Adaptability and comfort working in a transforming environment.
π Why Join Wakam?
- Being at the heart ofΒ tech-led transformation.
- Collaborating with passionate experts across disciplines.
- Joining a culture that promotesΒ ownership, agility, and innovation.
- Benefiting from flexible working arrangements βΒ hybrid or fully remote within the UK.
π Hiring Process
- Interview with our Talent Acquisition Partner
- Manager interview with our Head of Information Security
- Case study with the Digital Team
- HRBP interview
Β