Browse
···
Log in / Register
Summary: This role involves architecting, developing, and maintaining secure infrastructure and CI/CD pipelines, embedding security controls, and driving DevSecOps best practices. Highlights: 1. Flexible work options: remote, hybrid, or office-based 2. Continuous learning, coaching, and mentorship programs 3. Feedback-driven culture with a supportive team **Our promise:** * You choose how you'll work with us: fully remote, hybrid, or at our offices (Bucharest, Brașov); * We support your career growth through continuous learning, coaching, and mentorship programs; * We promise you a feedback\-driven culture that inspires healthy communication; * A friendly, professional, and supportive team is waiting for his new teammate; * A bunch of people with common hobbies and interests (sailing, football, running marathons, tennis, music, etc) is ready to welcome you; * A community driven by courage and creativity (we have our beer and our band that sings about us) is challenging you to have serious fun with us; * We designed benefits that give you the power to create balance in life, on and off work. **As a Senior DevSecOps, you will:** * Architect, develop, and maintain secure infrastructure as code (IaC) using Terraform, applying security\-by\-default patterns (networking, identity, encryption, segmentation). * Design and implement secure CI/CD pipelines in Azure DevOps (pipelines, repos, policies, approvals, service connections), ensuring traceability and strong governance. * Embed security controls into the SDLC and delivery pipelines: SAST, SCA, secrets scanning, IaC scanning, container image scanning, and practical quality/security gates. * Implement and run vulnerability management workflows (scan, triage, remediation tracking, retesting) using tools like Fortify, BlackDuck, Tenable, Dependabot (or similar). * Automate certificate and secret lifecycle management (rotation, expiration monitoring, secure storage, access policies) across environments. * Drive security hardening and best practices for Kubernetes (RBAC, network policies, pod security, image provenance, runtime controls) and containerized workloads. * Build and maintain security\-focused observability: dashboards, alerts, and detections using Azure Monitor, Log Analytics, Sentinel, Prometheus, Grafana (as applicable). * Collaborate with cross\-functional teams to define security requirements, security controls, and compliance needs; translate them into actionable technical implementations. * Run security assessments focused on DevSecOps controls (pipeline security checks, configuration reviews, vulnerability scanning) and work with teams to remediate findings. * Ensure continuous compliance and audit readiness by automating checks and producing evidence (pipeline logs, policy\-as\-code, access reviews). * Provide guardrails and support to development teams (secure patterns, baseline configs, documentation, enablement); mentor engineers and promote DevSecOps best practices. * Stay up to date with industry trends, threats, and best practices related to DevSecOps; recommend and drive improvements. **What about you?** * Proven experience as a DevSecOps Engineer or a similar role, with strong focus on integrating security into delivery pipelines. * Hands\-on, production experience with Azure and Azure DevOps (pipelines, repos, policies, service connections) is required. * Strong experience with Terraform (modules, environments, state management, code quality practices). * Solid hands\-on experience with Kubernetes and container security fundamentals (RBAC, network policies, image scanning/signing concepts, workload hardening). * Experience with security tooling and practices: vulnerability scanning/management, SAST/SCA, secrets scanning, certificate/secret lifecycle automation. * Strong scripting/automation skills (e.g., Python, PowerShell, Bash). * Good understanding of security fundamentals: IAM, least privilege, encryption, network security, secure configuration management, logging/monitoring. * Comfortable working with multiple stakeholders, able to explain security controls clearly to both technical and non\-technical audiences. * English (written and spoken). **Nice to have / Certifications:** * Certified Kubernetes Administrator (CKA) * Certified Kubernetes Security Specialist (CKS) * Azure DevOps Engineer Expert * Security certifications (e.g., CCSP, CSSLP, DevSecOps\-oriented certs) **If you feel this role is for you, let us get to know you better! There are 2 steps left:** * A get\-to\-know HR Discussion with your recruiter; * A final tale with your future colleagues, from the Infrastructure \& Platform Engineering Team Our recruitment process is designed to foster diversity, equity, and inclusion. We are committed to creating a workplace where everyone feels valued, respected, and empowered to thrive.
