DevSecOps Engineer

We are looking for an experienced Senior DevSecOps Engineer for our client, who will enhance their cloud and on-premise infrastructure and help develop CI/CD processes with a focus on security.

Your task will be to integrate security principles into all phases of development and operation – from design, through deployment, to monitoring. You will work with technologies like Kubernetes and OpenShift, hybrid environments (Azure and private clouds), modern DevSecOps tools, and projects where security is not just an addition, but a foundation.

What you will be responsible for

• CI/CD and automation – managing and developing GitLab CI/CD, creating efficient pipelines for various types of applications, deployment via ArgoCD and GitOps.
• Security and compliance – implementing Security-as-Code, integrating checks (SAST, DAST, SCA), vulnerability management, patching, and incident response.
• Infrastructure and orchestration – designing and managing Kubernetes/OpenShift clusters, configuring and optimizing container platforms, troubleshooting.
• Monitoring and observability – working with OpenTelemetry, Prometheus, Grafana, Jaeger, Zipkin, centralized logging (EFK/Loki), alerting, and post-mortem analysis.
• Cloud and on-premise – managing environments in Azure and private clouds, hybrid infrastructure, Terraform, and Ansible.
• Collaboration with development – supporting the team in containerization (Java, React, Angular), code review for infrastructure code and CI/CD configurations.

Who we are looking for

• Practical experience with DevSecOps in an enterprise environment.
• Advanced knowledge of Kubernetes/OpenShift – architecture, security, installation, operation, troubleshooting.
• Excellent orientation in GitLab CI/CD – managing monorepo, creating secure pipelines with security scans.
• ArgoCD and GitOps in practice.
• Knowledge of Helm, DevSecOps tools (SonarQube, OWASP ZAP, Snyk, Trivy, Twistlock).
• OpenTelemetry and observability stack (Prometheus, Grafana, Jaeger, Elasticsearch, Loki).
• Good orientation in cybersecurity (NIS2, ISO 27001, NIST).
• Experience with hybrid cloud (Azure + on-premise).
• Terraform at an advanced level.
• Knowledge of Docker, Podman, and managing secure registries.

What we appreciate additionally

• Experience with GCP or AWS.
• Overlap into development (Java/Spring Boot, React, Angular).
• Certifications in security or DevSecOps (CISSP, CISM, CEH, CKA, CKAD, Terraform Associate, GitLab Certified).
• Experience with service mesh (Istio, Linkerd), Vault, Falco, OPA/Gatekeeper.
• Scripting and automation (Python, Go, Bash).
• Penetration testing.

What skills we are looking for

• Strong analytical thinking and problem-solving skills with a focus on security.
• Good communication skills for collaboration across teams.
• Willingness to learn new technologies and share knowledge.