DevSecOps Engineer (offline)

Requirements:

• 5+ years of experience in security, and operations;

• Strong understanding of modern secure software development best practices;

• Proficiency in CI/CD technologies (e.g. git) and secure software deployment;

• In-depth knowledge of cloud services (AWS, GCP) and hands-on experience securing cloud services;

• Experience with containerization (Docker), orchestration (Kubernetes) and infrastructure as code (e.g. Terraform, Ansible);

• Strong understanding of system security and data protection;

• Excellent problem-solving and collaboration skills (DevOps and Dev teams).

Will be plus:

• Proficiency in security best practices for Golang, Javascript and Python and development;

• Experience implementing real time security monitoring solutions (Elastic, Wazuh, Splunk, Sumo etc.);

• Understanding of cloud infrastructure including networking, access control, IaaS, Saas and SIEM tools;

• Certified Information Systems Security Professional (CISSP), Certified Kubernetes Administrator (CKA), AWS Certified DevOps Engineer, or other relevant certifications.

Responsibilities:

• Instill security standards and best practices in software development and deployment processes;

• Develop and maintain security checks for CI/CD pipelines for efficient and secure software deployment;

• Design and implement security processes and tools across major cloud providers (AWS, GCP) as well as on-prem;

• Checking configurations for compliance with information security requirements;

• Build and maintain automated security and compliance checks for infrastructure;

• Create and maintain scripts in Python, Bash or PowerShell to automate security tasks and improve efficiency;

• Monitor and maintain CloudFlare WAF to ensure that web applications are protected from OWASP Top 10 vulnerabilities;

• Manage and configure AWS Guard Duty to detect and respond to security incidents in real-time;

• Work with SIEMs to ensure that logs and events are being captured;

• Use Terraform IAC to create and manage AWS infrastructure in a secure and compliant manner;

• Work with the team to review and approve Github pull requests, and troubleshoot Github action and custom pipeline builds;

• Collaborate with the team to review and authorize Github pull requests, and identify and resolve issues with Github Actions and custom pipeline builds;

• DDOS Mitigation.

Our benefits to you

🍀An exciting and challenging job in a fast-growing product ecosystem, the opportunity to be part of a multicultural team of top professionals in Development, Engineering and Architecture, Management, Operations, Marketing, etc;
🤝Great working atmosphere with passionate IT experts and leaders, sharing a friendly culture and a success-driven mindset is guaranteed;
📍Beautiful offices in Kyiv, Warsaw, Limassol, Almaty, Yerevan – work with comfort and enjoy the opportunity to build a network of connections with IT professionals day by day;
🧑‍💻Laptop & all necessary equipment for work according to the ecosystem standards;
🏖Paid vacations, personal events days, days off;
🫖Paid sick leave;
👨‍⚕Medical insurance;
💵Referral program — enjoy cooperation with your colleagues and get the bonus;
📚Educational support by our L&D team: internal and external trainings and conferences, courses on Udemy;
🗣Free internal English courses;
🤸‍♀Sport benefit;
🦄Multiple internal activities: online platform with newsletters, quests, gamification and presents for collecting bonuses, PIN-UP talks club for movie and books lovers, board games cozy evenings, special office days dedicated to holidays, etc;
🎳Company events, team buildings.