# 1. Expert in DevSecOps *Nature of the tasks* * Plan, implement, upgrade DevSecOps pipelines * Facilitate the continuous delivery of IT applications by using Application Lifecycle Management and automation tools. * Promote the usage of DevSecOps methodologies for IT projects. * Architect and design API Security, Container Security, Cloud Security. *Education* : EQF 7 *Specific expertise and technologies* * Experience with large, enterprise-level multi-user Information Systems * Good knowledge in establishing and managing deployment pipeline and release management * Good knowledge with DevOps container or serverless /orchestration tools (ie: Docker, Ansible, Terrafom, buildpacks, Kubernetes, etc.) * Good knowledge in at least a programming language (JAVA, Python, Bash, Perl, etc.) * Good knowledge in conducting DevSecOps in an agile work environment * Good knowledge in cloud security architecture and security requirements * Good knowledge in black box and white box testing (OWASP, HP Fortify, etc.) * Good knowledge of continuous delivery and Application Lifecycle Management tools (JIRA, Git, Bamboo, Nexus, etc.) * Good knowledge with secret management tools (CyberArk, Hashicorp etc.) * Good knowledge with Monitoring tools (Dynatrace, Prometheus etc.) * Good knowledge in the Cloud (Aws, Azure, Google, OVH etc.) *Certification and/or Standards* **Mandatory certifications (one of):** * Certified DevSecOps Professional (CDP) certification, * AWS Certified DevOps Engineer – Professional, * Microsoft DevOps Engineer Expert, * Google Professional Cloud DevOps Engineer, * or equivalent to be approved by the Commission *Skills* * Rapid self-starting capability and experience in team working. * Excellent interpersonal and communication skills * Ability to participate in multi-lingual meetings, ease of communication * Security and cloud Skills * Automation skills to optimize and understand the DEVSECOPS pipelines *On-call services foreseen for this profile :* No --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://doc.montoyer.com/framework-contracts/digit-tm-ii/digit-tm-ii-profiles-description/1.-expert-in-devsecops.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.