Key Responsibilities

• Design and implement automated CI/CD pipelines using Azure DevOps with modular, templated YAML structures.
• Build and maintain pipelines supporting application builds, deployments, and end-to-end automated testing.
• Integrate CI/CD workflows with:
• Source Control Management (e.g., Azure Repos)
• Third-party package repositories
• Unit testing frameworks (e.g., xUnit.net, JUnit)
• Code coverage tools (e.g., Cobertura)
• SAST platforms (e.g., SonarQube)
• Test data management tools (e.g., Redgate TDM)
• Database schema packaging (e.g., Redgate Flyway)
• Container image creation & scanning (Docker, JFrog Xray)
• Software composition analysis (e.g., JFrog Xray)
• PKI/Code Signing tooling
• Configure and integrate JFrog Artifactory with build and release pipelines, utilizing its APIs and advanced capabilities.
• Implement secure deployment pipelines across high-trust and low-trust zones, including application deployment, DB schema updates, test data provisioning, verification testing, and DAST (e.g., Tenable).
• Collaborate with developers to ensure adoption of the designed pipeline processes.
• Produce clear, high-quality consumption documentation, templates, and guides for development teams.
• Embed and enforce security controls within CI/CD workflows to detect vulnerabilities early in the lifecycle.
• Support secure coding best practices and prevent common security flaws through collaboration and review.
• Conduct compliance checks, internal audits, and risk mitigation activities to ensure adherence to organizational security standards.