[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"project-cicd-engineering-security-compliance-mfd":3,"similar-cicd-engineering-security-compliance-mfd":44},{"id":4,"slug":5,"title":6,"skills":7,"budget":27,"duration":28,"location":29,"onsitePercent":30,"contractType":31,"foundAt":32,"category":33,"description":37,"rawText":38,"webTitle":39,"webText":40,"language":41,"projectId":42,"sourceUrl":43},6829,"cicd-engineering-security-compliance-mfd","CI\u002FCD Engineering – Security & Compliance (m\u002Ff\u002Fd)",[8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26],"DevSecOps","CI\u002FCD","Kubernetes","GitOps","Argo CD","FluxCD","Terraform","OpenTofu","Harbor","Trivy","Prometheus","Grafana","Google Cloud Platform","GKE","GitLab","Security","Compliance","SBOM","Infrastructure-as-Code",null,"15.06.2026 - 31.12.2026 + Option","Frankfurt",50,"contracting","2026-05-29T07:25:38+00:00",{"id":34,"slug":35,"label":36},2,"devops_cloud","DevOps & Cloud","DevOps-Spezialist für sichere CI\u002FCD-Pipelines mit Security-Scanning und Compliance-Checks. Entwicklung und Konfiguration von DevSecOps-Architekturen mit Kubernetes, GitOps und Infrastructure-as-Code. Implementierung von Sicherheitskontrollen und Automatisierung für Software Supply Chain Security.","CI\u002FCD Engineering – Security & Compliance (m\u002Ff\u002Fd)\n\nFrankfurt (50%) and Remote\n\nStart: 15.06.2026 (ASAP)\n\n4 minutes ago\n\nJob type:\nProject\n\nDuration:\n31.12.2026 + Option\n\nScope of work:\nfull-time - (100%)\n\nLanguages:\nGerman, English\n\nID: 178769\n\nApply here\n\nWesthouse is one of the leading international recruitment agencies for the procurement of highly qualified experts in fields such as IT lifecycle management, SAP, engineering, commerce and specialist consultancy.\n\nFor our client we are currently looking for a CI\u002FCD Engineering – Security & Compliance (m\u002Ff\u002Fd) - Frankfurt (50%) and Remote.\n\nYour tasks\n\n- Analysing of program requirements and design secure, robust DevOps architectures that address integration, scalability, and compliance needs.\n- Development and configuration of CI\u002FCD pipelines with built-in security scanning and compliance checks.\n- Implementing of secure configuration, access controls, and encryption for systems, repositories, and deployment pipelines.\n- Regularly monitoring and updating systems and tools to address security vulnerabilities and ensure ongoing compliance with security policies and standards.\n- Conducting risk assessments and threat modeling to proactively identify and mitigate potential weaknesses in DevOps workflows.\n- Providing automation of infrastructure provisioning and management using tools such as Terraform, Ansible, or Open- Tofu, following best practices for security and reliability.\n- Maintaining of system and service availability, including disaster recovery planning, incident response procedures, and routine backups.\n- Performing regular audits of configurations, user access, and system logs to ensure integrity and traceability.\n- Coordination with development and other stakeholders to resolve issues, implement new features, and keep all systems running optimally while adhering to confidentiality and data protection requirements.\n- Creating and maintain comprehensive documentation on architecture, configurations, processes, and incident response plans.\n- Designing and implementing user-friendly interfaces that allow developers to access security tools directly.\n- Automating the provisioning and configuration of security tools (e.g., through APIs or self-service portals) to streamline developer onboarding.\n- Integrating security tools into CI\u002FCD pipelines, making them available as part of standard development workflows.\n- Ensuring access controls are properly set up so developers can use security tools safely, without compromising sensitive data or system integrity.\n- Monitoring usage and availability of security tools to ensure developers experience minimal friction and downtime.\n- Providing documentation and support materials to help developers efficiently utilize available security tools.\n- Continuously gathering feedback from developers and improving the self-service experience based on their needs.\n- Identifying and cataloguing routine tasks and processes performed by the stakeholders or expected from users.\n- Writing clear, step-by-step guides and instructions for common operations, troubleshooting, and maintenance activities.\n- Creating visual aids such as flowcharts, diagrams, or screenshots to support written documentation and enhance understanding.\n- Reviewing and updating documentation regularly to ensure accuracy with evolving tools, systems, and procedures.\n- Gathering feedback from internal and external users to refine and clarify documentation based on their experiences and needs.\n- Ensuring documentation is accessible and organized in a central repository or knowledge base.\n- Creating quick reference materials, FAQs, and “How-to” videos for frequent questions or issues.\n- Standardizing documentation formats and templates for consistency across all materials\n- Integrating SBOM\u002FKBOM generation tools with CI\u002FCD pipelines to ensure bills are produced for every build and update.\n- Selecting and maintaining appropriate automation tools (such as Trivy, Syft, or others) that support comprehensive and accurate SBOM\u002FKBOM creation.\n- Testing and validating automated outputs to ensure completeness, correctness, and compliance with internal or regulatory standards.\n- Streamlining the user experience so developers and other stakeholders can access SBOMs\u002FKBOMs with minimal manual steps.\n- Addressing and shielding technical complexities related to SBOM\u002FKBOM management from end users, making automation seamless and robust.\n- Monitoring and optimizing automation workflows for performance and scalability as products or systems evolve.\n- Maintaining and updating automation scripts as new package ecosystems, dependencies, or regulatory requirements emerge.\n- Documenting the automated processes, including how the SBOMs\u002FKBOMs are generated, stored, and accessed\n\nInterested?\n\nTobias Gollmann\n\nTel.: +49-89-383772-4135\nEmail: E-Mail: t.gollmann@westhouse-consulting.com t.gollmann@westhouse-consulting.com\n\nApply here\n\nShare posting\n\nFacebook linkedin Xing twitter\n\nYour qualifications\n\n- Design and implement DevOps solutions ensuring integrity, confidentiality, and availability of systems and data\n- Proven experience implementing DevSecOps practices end-to-end, embedding security controls into CI\u002FCD pipelines and platform layers\n- Strong experience collaborating with Engineering, DevOps, and IT teams to integrate security into the software development lifecycle\n- Develop and document security processes, including vulnerability management and incident response\n- Extensive hands-on experience designing, operating, and troubleshooting large-scale Kubernetes platforms\n- Deep understanding of Kubernetes internals, including scheduling, networking (CNI), storage, RBAC, admission controllers, and API extensions\n- Experience implementing container and runtime security in Kubernetes environments\n- Strong knowledge of network\n- security in containerized environments (segmentation, policies, secure communication)\n- Strong hands-on experience with GitOps workflows using Argo CD and FluxCD in production environments\n- Strong hands-on experience with Infrastructure-as-Code using Terraform or OpenTofu\n- Experience integrating security controls into CI\u002FCD pipelines, including automated validation and compliance checks\n- Strong operational experience with Harbor as a central artifact registry\n- Solid understanding of software supply chain security, including artifact signing, provenance, attestations, and dependency tracking\n- Experience working with SBOM standards (e.g., CycloneDX) and integrating SBOMs into security workflows\n- Hands-on experience with security tooling such as Trivy, Dependency-Track, and DefectDojo\n- Strong expertise in building and operating observability stacks centered around Prometheus\n- Advanced experience with Grafana, including custom dashboards, plugins, and security-focused monitoring\n- Experience integrating metrics, logs, and traces into a cohesive observability platform (e.g., Prometheus, Loki, OpenTelemetry)\n- Strong hands-on experience with Google Cloud Platform, particularly:\n- GKE (cluster operations, security, networking)\n- IAM and workload identity\n- Networking (VPCs, private connectivity, service controls)\n- Ability to evaluate, select, and implement security tools across cloud and on-premise environments\n- Strong understanding of network security principles, including firewalls, VPNs, and network segmentation\n- Deep understanding of encryption mechanisms, particularly asymmetric cryptography and certificate hierarchies (PKI)\n- Ability to secure communication paths and data flows across distributed systems\n- Experience supporting audits and security policy reviews\n- Awareness of the responsibilities associated with operating in critical infrastructure environments\n- Extensive experience operating and scaling GitLab in large environments\n- Design and operation of highly available GitLab architectures (e.g. backup\u002Frestore strategies)\n- Experience managing large-scale CI workloads\n- Strong understanding of access control, and project\u002Fgroup governance in GitLab\n- Proven ability to ensure performance, reliability, and compliance of GitLab as a shared platform service\n- Experience working with supporting tools and platforms such as:\n- PostgreSQL\n- TestRail\n- Jira","CI\u002FCD Engineering – Security & Compliance","Wir suchen einen erfahrenen CI\u002FCD Engineer mit Schwerpunkt auf Security und Compliance für eine spannende Projektposition in Frankfurt (50% vor Ort) und Remote. Die Position startet im Juni 2026 und läuft zunächst bis Ende 2026 mit Verlängerungsoption.\n\nIhre Hauptaufgaben umfassen die Analyse von Programmanforderungen und das Design sicherer, robuster DevOps-Architekturen, die Integration, Skalierbarkeit und Compliance-Anforderungen erfüllen. Sie entwickeln und konfigurieren CI\u002FCD-Pipelines mit integrierten Sicherheitsscans und Compliance-Prüfungen und implementieren sichere Konfigurationen, Zugriffskontrollen und Verschlüsselung für Systeme, Repositories und Deployment-Pipelines.\n\nZu Ihren Verantwortlichkeiten gehört die regelmäßige Überwachung und Aktualisierung von Systemen zur Behebung von Sicherheitslücken sowie die Durchführung von Risikobewertungen und Threat Modeling. Sie automatisieren die Infrastruktur-Bereitstellung mit Tools wie Terraform, Ansible oder OpenTofu und gewährleisten System- und Service-Verfügbarkeit durch Disaster Recovery Planning und Incident Response.\n\nEin wichtiger Aspekt ist die Entwicklung benutzerfreundlicher Interfaces, die Entwicklern direkten Zugang zu Sicherheitstools ermöglichen. Sie automatisieren die Bereitstellung von Sicherheitstools durch APIs oder Self-Service-Portale und integrieren diese in CI\u002FCD-Pipelines als Teil der Standard-Entwicklungsworkflows.\n\nWeitere Aufgaben umfassen die Erstellung umfassender Dokumentation, die Koordination mit Entwicklungsteams und anderen Stakeholdern sowie die kontinuierliche Verbesserung der Self-Service-Erfahrung basierend auf Entwickler-Feedback. Regelmäßige Audits von Konfigurationen, Benutzerzugriffen und Systemlogs gewährleisten Integrität und Nachverfolgbarkeit.\n\nErforderlich sind Kenntnisse in Deutsch und Englisch sowie umfassende Erfahrung in DevOps, Security und Compliance-Frameworks.","en","178769","https:\u002F\u002Fwww.westhouse-group.com\u002Fen\u002Fjoblisting\u002Fci-cd-engineering-security-compliance-m-f-d-frankfurt-50-and-remote-3\u002F",{"items":45},[46,63,85,97,111,127,144,158,171,185,199,216,235,255,273],{"id":47,"slug":48,"title":49,"skills":50,"budget":57,"duration":58,"location":59,"onsitePercent":60,"contractType":31,"foundAt":61,"category":62},7085,"senior-devops-engineer-eventstreaming-plattform-confluent-for-kubernetes-apache-kafka-azure-gitlab-cicd","Senior DevOps Engineer – Eventstreaming-Plattform Confluent for Kubernetes Apache Kafka Azure GitLab CI\u002FCD",[51,52,53,54,10,22,9,55,56],"DevOps","Confluent for Kubernetes","Apache Kafka","Azure","Deutsch C1","Englisch B1","CHF 105\u002Fh","9 Monate mit Option, Start Juli 2026","Zürich",100,"2026-05-30T18:01:28+00:00",{"id":34,"slug":35,"label":36},{"id":64,"slug":65,"title":66,"skills":67,"budget":27,"duration":80,"location":81,"onsitePercent":82,"contractType":31,"foundAt":83,"category":84},7050,"senior-iam-engineer-mwd-keycloak-vault-devops-automation-remote-ffm-oder-berlin","Senior IAM Engineer (m\u002Fw\u002Fd) Keycloak, Vault & Devops Automation - Remote & FFM oder Berlin",[68,69,51,70,71,72,73,74,75,14,76,77,78,10,79,18,19],"Keycloak","Vault","IAM","OIDC","OAuth2","SAML","Kerberos","LDAP","Helm","ArgoCD","PKI","GCP","Juli 2026 bis Ende 2026 + Option","Frankfurt am Main oder Berlin",10,"2026-05-29T14:56:31+00:00",{"id":34,"slug":35,"label":36},{"id":86,"slug":87,"title":88,"skills":89,"budget":27,"duration":93,"location":27,"onsitePercent":94,"contractType":31,"foundAt":95,"category":96},7016,"gitopsdevops-mwd","GitOps\u002FDevOps (m\u002Fw\u002Fd)",[11,51,90,91,92],"Apian","LowCode Plattformen","Infrastrukturaufbau","12 Monate",0,"2026-05-29T14:00:38+00:00",{"id":34,"slug":35,"label":36},{"id":98,"slug":99,"title":100,"skills":101,"budget":27,"duration":107,"location":108,"onsitePercent":30,"contractType":31,"foundAt":109,"category":110},7015,"devops-engineer-plsql-ba-betrieb","DevOps Engineer – PL\u002FSQL \u002F BA \u002F Betrieb",[102,51,103,104,105,106],"PL\u002FSQL","Business Analyst","Informatik","SAFe","Pikettdienst","01.07.2026 - 31.12.2026 (Option auf Verlängerung bis Ende 2028)","Bern","2026-05-29T13:51:33+00:00",{"id":34,"slug":35,"label":36},{"id":112,"slug":113,"title":114,"skills":115,"budget":27,"duration":123,"location":124,"onsitePercent":30,"contractType":31,"foundAt":125,"category":126},7003,"beratung-ist-analyse-bestehende-cicd-prozesse","Beratung & Ist-Analyse bestehende CI\u002FCD Prozesse",[9,116,117,51,118,119,120,121,122],"Jenkins","Azure DevOps","Docker","Testautomatisierung","Release Management","Analyse","Beratung","3 Monate","Wetzlar","2026-05-29T13:28:05+00:00",{"id":34,"slug":35,"label":36},{"id":128,"slug":129,"title":130,"skills":131,"budget":27,"duration":141,"location":29,"onsitePercent":30,"contractType":31,"foundAt":142,"category":143},6989,"platform-engineer-kubernetes-cloud-platform-mwd","Platform Engineer (Kubernetes \u002F Cloud Platform) (m\u002Fw\u002Fd)",[10,9,22,116,132,133,12,134,135,18,19,136,137,138,139,140,23],"Tekton","Argo Workflows","Monitoring","Observability","Datadog","SRE","IT Operations","Netzwerk-Konzepte","Load Balancing","5 Monate + Option","2026-05-29T13:10:56+00:00",{"id":34,"slug":35,"label":36},{"id":145,"slug":146,"title":147,"skills":148,"budget":27,"duration":141,"location":29,"onsitePercent":30,"contractType":31,"foundAt":156,"category":157},6985,"cicd-platform-engineer-mwd","CI\u002FCD Platform Engineer (m\u002Fw\u002Fd)",[22,9,149,15,14,150,16,11,151,152,134,153,154,155],"Infrastructure as Code","TestRail","Security Scanning","Artifact Registries","Backup\u002FRecovery","Scripting","Automatisierung","2026-05-29T13:00:49+00:00",{"id":34,"slug":35,"label":36},{"id":159,"slug":160,"title":161,"skills":162,"budget":27,"duration":167,"location":168,"onsitePercent":82,"contractType":31,"foundAt":169,"category":170},6880,"senior-platform-engineer-mwd-development-tooling-cicd-services-remote-ffm-oder-berlin","Senior Platform Engineer (m\u002Fw\u002Fd) Development Tooling & CI\u002FCD Services - Remote & FFM oder Berlin",[163,9,164,165,166],"Platform Engineering","Development Tooling","Cloud-native","Hybrid Cloud","01.07.2026 bis 31.12.2026 + Option","Frankfurt am Main","2026-05-29T09:51:14+00:00",{"id":34,"slug":35,"label":36},{"id":172,"slug":173,"title":174,"skills":175,"budget":180,"duration":181,"location":27,"onsitePercent":182,"contractType":31,"foundAt":183,"category":184},6813,"80-remote-entwicklung-von-terraform-providern","80% remote: Entwicklung von Terraform Providern",[176,177,149,14,178,179],"Go (Golang)","Terraform Provider Entwicklung","API Integration","Schnittstellenintegration","VB","31.12.2026++",20,"2026-05-29T06:21:25+00:00",{"id":34,"slug":35,"label":36},{"id":186,"slug":187,"title":188,"skills":189,"budget":27,"duration":196,"location":81,"onsitePercent":82,"contractType":31,"foundAt":197,"category":198},6805,"senior-cd-operation-engineer-mwd-5-jahre-kubernetes-on-premise-erfahrung-remote-ffm-oder-berlin","Senior CD Operation Engineer (m\u002Fw\u002Fd) 5 Jahre Kubernetes On Premise Erfahrung - Remote & FFM oder Berlin",[10,9,22,116,132,133,12,18,19,136,190,191,192,193,194,140,23,137,195,134,135],"Go Lang","Python","C\u002FC++","RESTful Services","Networking","ITIL","01.07.2026 bis Ende 2026 + Option","2026-05-29T05:31:29+00:00",{"id":34,"slug":35,"label":36},{"id":200,"slug":201,"title":202,"skills":203,"budget":180,"duration":211,"location":212,"onsitePercent":213,"contractType":31,"foundAt":214,"category":215},6744,"site-reliability-engineer","Site Reliability Engineer",[204,205,206,207,208,209,210],"Site Reliability Engineering","Production Environment Support","Troubleshooting","Incident Management","Enterprise Environments","Communication","Stakeholder Management","7+ Monate","Utrecht",40,"2026-05-28T15:26:32+00:00",{"id":34,"slug":35,"label":36},{"id":217,"slug":218,"title":219,"skills":220,"budget":230,"duration":231,"location":168,"onsitePercent":232,"contractType":31,"foundAt":233,"category":234},6713,"75-remote-cloud-observability-developer-fmd","75% remote: Cloud Observability Developer (f\u002Fm\u002Fd)",[190,221,10,9,8,11,222,223,224,225,51,226,227,228,229,79],"RESTful services","containerization","observability tools","system programming","Agile","unit testing","integration testing","networking","hyperscalers","Verhandelbar","01.07.2026 - 31.12.2026++",25,"2026-05-28T14:16:29+00:00",{"id":34,"slug":35,"label":36},{"id":236,"slug":237,"title":238,"skills":239,"budget":250,"duration":27,"location":251,"onsitePercent":94,"contractType":252,"foundAt":253,"category":254},6675,"devops-engineer-mwd-7","DevOps-Engineer (m\u002Fw\u002Fd)",[240,241,242,243,244,245,246,247,248,249,155],"DevOps-Architekturen","CI\u002FCD-Pipelines","Entwicklungsinfrastrukturen","Systemdesign","Cloud-Architekturen","Container-Technologien","Performance-Analysen","Security-Analysen","Code-Analysen","Projektmanagement","74.000-89.000 EUR pro Jahr","Hamburg","permanent","2026-05-28T13:34:22+00:00",{"id":34,"slug":35,"label":36},{"id":256,"slug":257,"title":258,"skills":259,"budget":27,"duration":268,"location":269,"onsitePercent":30,"contractType":270,"foundAt":271,"category":272},6582,"cloud-software-engineer-adas-mwd","Cloud Software Engineer ADAS (m\u002Fw\u002Fd)",[10,21,191,22,77,14,260,261,262,263,264,265,266,267],"Pulumi","Microservice-Architekturen","Datenbanken","ML-Plattformen","Workflow-Orchestrierung","MLFlow","Flyte","Object Storage","17 Monate","Ulm","temp_work","2026-05-28T12:16:51+00:00",{"id":34,"slug":35,"label":36},{"id":274,"slug":275,"title":276,"skills":277,"budget":27,"duration":286,"location":287,"onsitePercent":30,"contractType":270,"foundAt":288,"category":289},6577,"cloud-platform-engineer-mwd-ciam","Cloud Platform Engineer (m\u002Fw\u002Fd) CIAM",[10,278,279,280,281,282,191,14,283,241,284,285,23,24,134],"AWS EKS","Cloud-Infrastrukturen","Microservices","Java\u002FJVM","Go","Spring Boot Cloud Config","PostgreSQL","Redis","18 Monate","Stuttgart","2026-05-28T12:02:26+00:00",{"id":34,"slug":35,"label":36}]