Lead DevOps Engineer

Experience 7+ years

Domain Banking & Finance

Location Hybrid from Poland Kraków /Office attendance is required twice per week

Job Details

Technical Requirements

Must have

• Strong experience designing and maintaining Jenkins pipelines and Jenkins Shared Libraries
• Hands-on delivery of CI/CD pipelines for multiple languages (Java, Node.js, Python, .NET)
• Good understanding of container-based build and deployment processes
• Experience integrating Helm and Terraform into CI/CD pipelines
• Experience embedding security and quality tools into CI/CD workflows (SonarQube, Sonatype IQ, SAST/DAST, container scanning)
• Practical experience with secrets management, preferably HashiCorp Vault
• Solid understanding of software supply chain security (SBOMs, provenance, artifact signing, digests)
• Strong scripting skills (Groovy, Bash, or similar)
• Experience working in DevOps, CI/CD, or Platform Engineering teams
• Self-motivated specialist with strong problem-solving skills
• Fluent English

Nice to have

• Experience aligning pipelines with SLSA maturity levels
• Familiarity with SBOM standards such as CycloneDX or SPDX
• Experience supporting CI/CD platforms used by multiple teams
• Experience with Kubernetes or cloud-native delivery platforms
• Background in developer platform or internal tooling teams

Required Technical Skills
- Jenkins
- DevOps
- CI/CD
- Helm
- Terraform
- SonarQube
- HashiCorp Vault
- Bash

Main Responsibilities
We are looking for a Senior / Lead DevOps & CI/CD Platform Engineer to own and further develop a Jenkins Shared Library that supports secure, standardized, multi-language build and deployment pipelines across the organization.

The selected specialist will design and maintain opinionated but flexible CI/CD abstractions, enabling development teams to deliver faster while maintaining security, compliance, and software supply chain integrity. The role includes building provenance-aware pipelines (SLSA, SBOMs, artifact digests) and integrating security tooling throughout the software lifecycle.

CI/CD Platform Ownership

• Design, own, and continuously improve a reusable Jenkins Shared Library
• Provide standardized pipeline stages for build, testing, security, compliance, and deployment
• Enable simple team adoption through a declarative configuration model
• Balance opinionated defaults with extensibility across teams

Multi-Language Build Orchestration

• Maintain CI/CD workflows for Java / Maven, .NET, Node.js / NPM, and Python / pytest
• Manage container builds, image tagging, digests, and metadata publishing
• Support infrastructure-as-code pipelines using Helm and Terraform

Security, Compliance, and Supply Chain Integrity

• Integrate security tooling into CI/CD pipelines, including SonarQube, Sonatype IQ, SAST, DAST, and container scanning
• Implement secure secrets management using HashiCorp Vault
• Generate and publish SBOMs, artifact metadata, provenance, and SLSA-aligned attestations
• Improve software supply chain security across teams

Deployment and Testing Pipelines

• Build and maintain deployment workflows across environments
• Design and operate regression testing pipelines
• Ensure releases are stable, repeatable, and auditable

Platform Enablement & Collaboration

• Work closely with application and infrastructure teams
• Provide documentation, standards, and CI/CD best practices
• Continuously improve tooling, performance, and security posture