1 of 1 SonarQube Jobs in Berkshire

infrastructure security using least-privilege and zero-trust principles Build and maintain secure CI/CD pipelines with automated security gates (Snyk, SonarQube, OWASP ZAP) Conduct and coordinate penetration testing (internal and third-party); triage and drive remediation Deploy runtime threat detection (GuardDuty, Falco, Wazuh) Manage secrets detection … scanning (GitLeaks, Vault) Build observability with ELK stack, Elastic agents, and anomaly alerting What success looks like: 3 months Deploy SAST tooling (SonarQube) across all repositories with automated PR scanning Implement DAST scanning (OWASP ZAP) for staging environments with scheduled scans Deploy secrets detection tooling (e.g., GitLeaks, TruffleHog) across ...