DevSecOps Engineer

This is a fully remote position, open to applicants in Bulgaria.

📋 Description

• Integrate security measures as a standard practice throughout the Software Development Life Cycle (SDLC), including shift-left testing, secure configurations, and vulnerability scanning.

• Manage Identity and Access Management (IAM), Role-Based Access Control (RBAC), Single Sign-On (SSO)/Security Assertion Markup Language (SAML), and access governance across all platform environments.

• Ensure adherence to ISO 27001, SOC 2, NCSC guidelines, Cyber Essentials, and other related frameworks.

• Provide practical guidance to engineering teams and promote secure development methodologies.

• Oversee multi-cloud architecture, primarily focusing on AWS, along with Azure and Google Cloud Platform (GCP).

• Handle Kubernetes workloads and serverless architectures, including AWS Lambda.

• Lead infrastructure-as-code initiatives using Terraform to maintain consistency and scalability.

• Contribute to decisions regarding platform-level scalability, resilience, and performance.

• Support Windows Server and Azure environments, ensuring integration with identity systems.

• Oversee and enhance Continuous Integration/Continuous Deployment (CI/CD) pipelines across Jenkins, GitLab CI, and Azure DevOps.

• Promote automation in deployments, testing, and provisioning processes.

• Enhance the developer experience by enabling faster, more reliable, and secure delivery.

• Manage monitoring and observability using tools such as Prometheus, Grafana, and Splunk (or their equivalents).

• Define and oversee Service Level Indicators (SLIs) and Service Level Objectives (SLOs).

• Lead incident response efforts, conduct root cause analyses, and develop prevention strategies.

• Proactively identify and address reliability and performance risks.

⛳️ Requirements

• Extensive hands-on experience in AWS cloud architecture.

• Proven experience in implementing DevSecOps practices throughout the SDLC.

• Familiarity with IAM, RBAC, SSO/SAML, and contemporary security tools.

• Expertise in constructing and managing CI/CD pipelines at scale, using tools such as GitLab CI, Jenkins, Snyk, SonarQube, and Lacework/FortiCNAPP.

• Proficient in scripting for automation, particularly with Bash and Python.

• Strong experience with Kubernetes, including cluster management and containerized delivery at scale.

• Experience in observability, monitoring, and incident management, including tools like Grafana, Sentry, Darktrace, and managing SLIs/SLOs.

• Experience in leveraging AI tools to enhance engineering workflows and delivery processes.

🏝️ Benefits

• Option for remote work.