SecOps Engineer

Our ideal candidate will possess:

•  A "Shift-Left" Mindset: A passion for integrating security early and throughout the CI/CD pipeline, not as an afterthought;
• Proficiency in Security Tooling: Hands-on experience with SAST, DAST, SCA, and IaC scanning tools, including within CI/CD platforms (e.g., Jenkins, GitLab CI, GitHub Actions);
• Cloud-Native Security Expertise: Extensive knowledge of securing cloud environments (AWS, Azure, and/or GCP) and containerized workloads (Docker, Kubernetes).
• Infrastructure as Code (IaC) Security: Strong experience auditing and securing infrastructure defined in Terraform, Ansible, or SaltStack;
• Scripting & Automation Mastery: Ability to automate security checks and remediations using scripting and software configuration management tools;
• Solid Foundational Knowledge and commercial experience in: web apps and infrastructure penetration testing, with a strong understanding of OWASP Top 10, network security, web application firewalls (WAF), and SIEM principles;
• Threat Modeling & Risk Assessment: Experience with threat modeling methodologies (e.g., STRIDE) to identify and mitigate risks during design phases;
• Collaborative Communication: Excellent communication skills to articulate security risks to engineers and leadership, fostering a culture of security awareness;
• Analytical Problem-Solving: Strong investigative and analytical skills to diagnose complex security issues in a dynamic environment.

Key Responsibilities:

• Integrate security practices into DevOps pipelines (CI/CD) to enable secure software delivery;
• Implement, monitor, and improve security automation in infrastructure as code, build, and deployment processes;
• Handle information security incidents and support root cause analysis;
• Perform application and infrastructure penetration testing;
• Continuously perform vulnerability management process to improve resilience of corporate systems, applications, cloud, and container environments;
• Maintain PCI DSS related procedures;
• Develop, document, and enforce security policies, standards, and best practices;
• Maintain compliance with frameworks such as PCI DSS and support secure architecture design reviews;
• Build and manage secure environments for networks, storage, and cloud services using infrastructure as code;
• Champion DevSecOps culture across teams by advocating for shift-left security and security-as-code principles.

Will be an advantage:

• Official certifications like CompTIA Security+, CISSP, Microsoft, Cisco understanding of Configuration Management tools/ IaC, CI/CD and Monitoring & Observability tools and virtualisation systems.

Required:

• Scanning tools within CI/CD platforms (e.g., Jenkins, GitLab CI, GitHub Actions, Nexpose, Nessus, Burpsuite, Owasp zap);
• Securing cloud environments (AWS, Amazon Detective, Azure, and/or GCP) and containerized workloads (Docker, Kubernetes);
• Auditing and securing infrastructure defined in Terraform, Ansible, or SaltStack;
• Scripting and software configuration management tools;
• OWASP Top 10, network security, web application firewalls (WAF), and SIEM principles;
• Threat modeling methodologies (e.g., STRIDE).

What we offer:

• Working in a stable company with more than 13-years history in the media market;
• The opportunity to participate in the creation of a service of the future;
• Free English lessons;
• Table tennis lessons;
• Corporate psychologist;
• Discounts from partner brands for company employees.

We don’t just want to be an employer — we want to be your employer of choice.

We’d appreciate it if you could take a moment to fill out a short survey about what matters most to you. It will help us better understand candidates’ expectations and create an even more comfortable environment at MEGOGO. Here’s the link: bit.ly/43YaxBH

By responding to the vacancy and sending your CV to the Company (LLC “MEGOGO”), registered and operating in accordance with the laws of Ukraine, registration number 38347009, address: Ukraine, 01011, Kyiv, Rybalska Street, building 22 (hereinafter “the Company”), you confirm and agree that the Company processes your personal data presented in your CV in accordance with the Law of Ukraine “On Personal Data Protection” and GDPR.