Information Security GRC Program Senior Manager directing security governance, risk, and compliance functions at Kemper. Leading a team to ensure audits, exams, and control frameworks are maintained effectively.
About the role
- Cybersecurity Manager driving DevSecOps strategy and implementing security controls for Sonepar’s cloud platform. Collaborating with engineering teams on secure CI/CD pipelines and cloud security engineering.
Responsibilities
- Responsible for implementing technical and logical security controls across all phases of the software development lifecycle and the supporting infrastructure.
- Define and drive the DevSecOps strategy for the Sonepar Cloud Platform.
- Integrate security best practices into CI/CD pipelines, build systems, and deployment workflows.
- Ensure compliance with enterprise security standards, regulatory requirements, and cloud governance policies.
- Lead threat modeling, security reviews, and the design of secure architectures.
- Ensure the platform supports effective security monitoring, detection, and incident response.
- Architect and maintain secure, scalable CI/CD pipelines that enable product teams to release with high velocity and confidence.
- Implement automation for code scanning, dependency analysis, container security, secrets management, and runtime protection.
- Lead the implementation of cloud-native security controls across Azure resources.
- Build processes, playbooks, dashboards, and alerting related to platform security and DevSecOps.
- Manage and coordinate the security consultants contributing to the Digital Factory cybersecurity initiatives.
Requirements
- 7+ years of experience in DevOps, SRE, Cloud Engineering, or Security Engineering roles.
- Strong expertise in Microsoft Azure, cloud-native security controls, and infrastructure-as-code (Terraform).
- Proven experience building and securing CI/CD pipelines (GitHub Actions, Azure DevOps, GitLab CI, Jenkins, etc.).
- Deep knowledge of container security, Kubernetes, API security, secrets management, and identity (Azure AD).
- Experience with vulnerability management, code analysis tools, and security automation.
- A mindset focused on reliability, scalability, and automation.
- Strong communication, leadership, and cross-team collaboration skills.
Benefits
- 75% reimbursement of your monthly or annual public transport pass.
- Swile meal card (Ticket restaurant).
- Company-exclusive gym available to employees free of charge.
- Sustainable mobility package.
- Health insurance & welfare benefits.
- Employee savings plan & profit-sharing bonus.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Associate Director ICT Security overseeing the cybersecurity strategy and team leadership at PFH Technology in Dublin. Ensuring compliance and security in Ireland’s healthcare infrastructure.
VG
Senior Consultant focused on ISMS, BCM, and cybersecurity compliance at VICCON GmbH. Leading projects and collaborating with clients to enhance their information security and resilience.
GSS Officer at Itad supporting safety, security, and travel policies. Overseeing risk management and collaborating with project teams for operational support.
Install and manage fall protection systems at height, ensuring compliance with safety standards. Leadership required in overseeing teams and project delivery at construction sites.
Security Design Lead in Rabobank's cybersecurity team, designing secure technology solutions for food & agribusiness banking. Collaborating across teams to ensure robust security implementations.
Identity Security Posture Management Specialist enhancing identity security posture at Kemper Insurance. Collaborates across teams to tackle identity risks and compliance challenges in a high - performing culture.
Zscaler Engineer responsible for maintaining cybersecurity tools and developing integrations at HP. Collaborating across teams to enhance data loss prevention strategies and monitor industry threats.
Senior Manager overseeing Security Risk Management at First American. Leading enterprise policies, third - party vendor security, and security strategy execution.
Principal Architect developing cybersecurity strategy for Ensemble's technology - enabled revenue cycle management solutions. Focus on securing cloud architectures and ensuring information assurance in healthcare.