DevSecOps Engineer

This is a fully remote position, open to applicants in Poland.

📋 Description

• Develop and implement security measures within CI/CD pipelines (GitHub, GitLab).

• Set up and manage SAST, SCA, and container scanning tools (Trivy, Dependabot).

• Detect and address vulnerabilities in applications and container images.

• Aid in container image scanning and signing practices.

• Create and maintain automation scripts (Python, Bash).

• Work alongside engineering teams to integrate security into development processes.

⛳️ Requirements

• 2–4 years of experience in DevOps, DevSecOps, or security-focused roles.

• Practical experience with CI/CD pipelines (GitHub or GitLab).

• Hands-on knowledge of security tools: SAST, SCA, and container scanning.

• Basic scripting abilities (Python, Bash).

• Familiarity with OWASP Top 10.

• Basic understanding of Kubernetes and containers (preferred).

• Knowledge of Kubernetes security principles (RBAC, policies) (preferred).

• Experience with Kubernetes security tools (Kyverno, OPA, StackRox) (preferred).

• Awareness of container image signing (Cosign, Sigstore) (preferred).

• Experience with cloud platforms (AWS, GCP, Azure, or OCI) (preferred).

🏝️ Benefits

• Opportunities for full-time remote work.

• Flexible working hours.

• Private health insurance.

• An additional day off each calendar year.

• Compensation for sports programs.

• Comprehensive mental health program.

• Complimentary online English lessons with a native speaker.

• Generous referral program.

• Access to training, internal workshops, and participation in international professional conferences and corporate events.