Senior Application Security Engineer

DevSecOps Engineer Profile Start date Dec 2025 Long-term Self-Employed Mission Location Brussels-Hybrid (3 days on site-2 days work from home) MANDATORY Role Summary: The DevSecOps Engineer will provide operational, security, and quality assurance expertise for a diverse ecosystem of Continuous Integration and Continuous Deployment (CI/CD) tools. This includes troubleshooting user issues, embedding automated security controls, integrating quality gates, and maintaining stable and compliant CI/CD operations across the platform. The engineer will also support Kubernetes, SonarQube, Nexus, and Harbor environments, contributing to a secure, automated, and reliable software delivery framework. Key Responsibilities: User Support and Issue Resolution Act as the primary point of contact for users needing assistance with CI/CD tools. Troubleshoot issues across Jira, Confluence, GitHub, Harbor, Nexus, Keycloak, and SonarQube. Provide timely and effective solutions for platform-related problems, ensuring high user satisfaction. Platform Configuration and Maintenance Configure and maintain GitHub, Nexus, Keycloak, and SonarQube instances to align with organizational standards. Oversee secure management of artifact and container registries (Nexus and Harbor). Support deployments and maintain configurations to ensure continuous availability. Pipeline Automation and Security Integration Develop, enhance, and migrate CI/CD pipelines using GitHub Actions and related tooling. Integrate automated quality and security gates (SonarQube, dependency scanning, container scanning). Embed DevSecOps practices ensuring early detection and remediation of vulnerabilities in the delivery chain. Automation and Scripting Develop automation scripts to streamline platform maintenance, compliance checks, and CI/CD setup. Use scripting languages (e.g., Python, Bash) to support automation and operational efficiency. Governance, Security, and Compliance Maintain security configurations in Keycloak for authentication and authorization. Apply CI/CD security best practices including secrets management, least privilege access, and vulnerability scanning. Ensure that all CI/CD processes include automated checks for security, code quality, test coverage, and dependency risks. Required Skills and Qualifications: - Proven experience in DevOps or DevSecOps engineering roles with strong knowledge of CI/CD tools (GitHub Actions, Bamboo, Bitbucket, Jenkins, or similar). - Experience with containerization and orchestration (Docker, Kubernetes). - Solid experience with artifact and image management using Nexus and Harbor. - Familiarity with code quality and security analysis tools such as SonarQube, OWASP dependency-check, or Trivy. - Proficiency in scripting (Python, Bash) and automation frameworks. - Strong understanding of IAM, Keycloak, or other SSO/OIDC-based authentication systems. - Ability to troubleshoot across the full CI/CD stack, from SCM to build, test, and deploy. - Familiarity with Infrastructure as Code (Terraform, Ansible) is an asset. - AWS knowledge (EC2, S3, IAM) is an advantage. Preferred Profile: - Experience embedding automated quality and security gates into CI/CD pipelines. - Background in platform operations, DevSecOps governance, or CI/CD migration projects. - Analytical mindset with strong problem-solving and documentation skills. - Excellent communication skills and collaborative working style. This position is ideal for engineers passionate about secure automation, quality-driven delivery, and operational excellence in a modern DevSecOps environment.