View all jobs
Veracode Consultant - October 2023
remote, remoteFor one of our clients we are looking for a Veracode consultant
Project description:
The Hosting and Cloud Technologies (HaCT) development support team manages a Secure Development Platform. It enables application development teams to manage their development lifecycle in the client Cloud Development Platform based on Azure DevOps, GitHub, SonarCloud and Veracode. Future enhancements of the Uniper Cloud Development platform are planned, implemented, and tested.
Background to the assignment:
As part of the DevSecOps project the client will introduce a new security tooling for application development teams. The planned tool is Veracode. As the client lacks profound expertise with the tool, the client is looking for an experienced external consultant that is an expert in application development security and the Veracode toolset. Therefore, the external consultant has a unique position compared to the client's internal project staff and provides significantly different services than the internal staff.
Tasks:
Start: ASAP
Duration: Till end of 2023 (extensions planned till September 2024)
Location: remote
Capacity: 40 hours/week
Project description:
The Hosting and Cloud Technologies (HaCT) development support team manages a Secure Development Platform. It enables application development teams to manage their development lifecycle in the client Cloud Development Platform based on Azure DevOps, GitHub, SonarCloud and Veracode. Future enhancements of the Uniper Cloud Development platform are planned, implemented, and tested.
Background to the assignment:
As part of the DevSecOps project the client will introduce a new security tooling for application development teams. The planned tool is Veracode. As the client lacks profound expertise with the tool, the client is looking for an experienced external consultant that is an expert in application development security and the Veracode toolset. Therefore, the external consultant has a unique position compared to the client's internal project staff and provides significantly different services than the internal staff.
Tasks:
- Professionally consult the application teams regarding the ramp-up of the Veracode platform in conjunction with Azure DevOps and GitHub Enterprise based on own knowledge and experience.
- Define and implement roles in Veracode according to the client standard roles. Requirements will be defined in the product backlog items and provided in advance by the client. The role implementation will be signed off by the client.
- Set up a central reporting in Veracode to provide a company-wide view on application development health.
- Develop client specific security profiles in Veracode that serve as standard for client development projects.
- Create Sharepoint articles for end users on how to use the Veracode platform and present this Sharepoint documentation to the client for a sign off.
- Independently provide professional consultation services via online calls and email to the application development teams regarding pipeline configuration, team setup, permission setup and source code setup in Azure DevOps and GitHub to use Veracode. Application development teams are the consumers of Hosting and Cloud Technologies (HaCT) development support team services.
Start: ASAP
Duration: Till end of 2023 (extensions planned till September 2024)
Location: remote
Capacity: 40 hours/week