Responsibilities
- Design and sustain GitLab CI/CD components for integration into development pipelines, supporting static, software composition, and dynamic application security testing, builds, reusable templates, and shared code modules to uphold software integrity.
- Oversee the security configuration and management of artifact repositories and container registries using Artifactory.
- Administer cybersecurity scanning tools for SAST, SCA, and DAST, along with associated build pipeline integration and execution.
- Produce, revise, and maintain technical documentation covering DevSecOps standards, operational workflows, and usage guidelines for tools including GitLab, Jira, Coverity, Artifactory, Xray, Acunetix, and SonarQube.
- Write and maintain automation scripts in Bash, PowerShell, and Python to enhance efficiency in DevSecOps and operational tasks.
- Implement and manage secret management systems to safeguard credentials, tokens, and keys in CI/CD environments, including GitLab CI Variables, with attention to rotation and access policies.
- Support administration of user roles, permissions, and access rights across DevSecOps platforms such as GitLab, Artifactory, Jira, SonarQube, and Acunetix, enforcing least privilege and conducting regular access audits.