Expoint - all jobs in one place

The point where experts and best companies meet

Limitless High-tech career opportunities - Expoint

EY DevSecOps Consultant - EY GDS Hybrid 
Spain, Andalusia, Málaga 
308285015

23.06.2024

Are you ready for a new challenge? As a DevSecOps Consultant, you will be supporting top entities in the financial sector. In this role, you will act as an expert in the field, identifying, analyzing, and evaluating different architectures, security capabilities, functionalities, tools, etc., and proposing solutions, monitoring the maturity of security capabilities, and reporting their status. Additionally, you will support decision-making and implementation of security controls from project and application design.

As part of the FSO (Financial Services Operations) team, you will develop security capabilities whilst leveraging DevSecOps principles, design and implement Security solutions. You will also perform diverse assessment deploying large-scale cyber countermeasure capabilities to detect and prevent sophisticated threats and vulnerabilities on enterprise networks.

Your key responsibilities:

  • Automation of security controls in CI/CD and security validation and testing: SAST, DAST, IAST, RASP, SCA.
  • Making improvement proposals and defining action plans to optimize security capabilities in DevOps environments to ensure software security.
  • Collaboration with IT teams in adopting security requirements in cloud environments.
  • Security assessments in container environments (Docker, Kubernetes, and OpenShift) and Security implementation in IaC (Infrastructure as Code).
  • Analysis of evidence in assessing the cybersecurity maturity of an organization based on the SecDevOps software development philosophy.
  • Preparation of technical and executive reports.

Skills and attributes for success:

  • 2-5 years of experience in cybersecurity.
  • Cloud environments knowledge.
  • Strong programming languages knowledge (Java, Spring Boot, Python, Groovy).
  • Previous experience performing false-positive analysis in vulnerability scanning of code.
  • GitOps, Helm methodologies familiarity.
  • Understanding of security automation and machine learning.

To qualify for the role, you must have:

  • Strong communication skills in both English and Spanish (B2 level at least).
  • Autonomy and critical thinking ability.
  • Technical knowledge at the architecture and infrastructure level.
  • Knowledge of security capabilities and functionalities, at the design and strategy level.


Ideally, you’ll also have:

  • Diploma or Degree in Computer Science, Software Engineering, or related discipline
  • Good technical knowledge of Microservice oriented solutions, APIs, Azure AD, and common Cloud authentication patterns
  • Cloud/DevOps Certification (MS Azure/AWS/GCP)


You’ll develop the mindset and skills to navigate whatever comes next.
You’ll be embraced for who you are and empowered to use your voice to help others find theirs.