This is a fully remote position, open to applicants in Estonia.

• Ensure the security of CI/CD and delivery infrastructure, including runners, pipelines, and the build environment.

• Collaborate with AppSec to implement and enforce supply chain security controls.

• Develop and enhance AWS cloud security practices.

• Enhance network-level security through segmentation, service-to-service communication, and reduction of attack surfaces.

• Create and fortify security controls within GitLab CI.

• Implement security measures for Infrastructure as Code (IaC), including scanning in CI/CD and supporting manual IaC reviews.

• Establish practices for managing misconfigurations.

• Engage hands-on with Prisma Cloud, sharing co-ownership responsibilities.

• Contribute to the security of Kubernetes through the use of Kyverno and policy development.

• Take part in incident response activities, investigations, and postmortem analyses.

• Promote the adoption of security practices among DevOps teams.

• A minimum of 3 years of experience in InfraSec / DevSecOps (not purely DevOps or AppSec).

• Extensive hands-on experience with AWS security.

• Significant hands-on experience with Kubernetes security.

• Strong understanding of network security within cloud and Kubernetes environments.

• Proven experience in securing CI/CD and software delivery pipelines.

• Familiarity with IaC security, including scanning and/or reviews.

• Experience in building or enhancing InfraSec / DevSecOps processes.

• Capability to drive change and influence engineering teams effectively.

• Ability to thrive in non-ideal, evolving environments.

• A risk-based mindset, enabling prioritization based on actual impact.

• Opportunities for professional growth within an international team.

• Flexible work arrangements.

DevSecOps Engineer

People also viewed