DevSecOps Engineer

We are inviting a highly motivated and security-driven DevSecOps Engineer to join our team and help strengthen the security of our infrastructure, services, and development processes.

Our company specializes in research, engineering, and product development for the fintech industry. By applying a data-driven approach and leveraging technical expertise, we build future-defining solutions that drive innovation and success.

Responsibilities:

• Integrate and automate security controls within CI/CD pipelines and infrastructure
• Securely configure and harden systems, services, and cloud/on-premise environments
• Implement and manage vulnerability management processes and tools
• Develop automation scripts (Python, Bash, PowerShell) for log analysis and security monitoring
• Configure and maintain SIEM and SOAR solutions for incident detection and response
• Support the Secure Development Lifecycle (SDL) by embedding security at all stages (from threat modeling to deployment and monitoring)
• Apply patches and updates to mitigate security vulnerabilities
• Collaborate closely with DevOps and Development teams on security initiatives

Requirements:

• 3+ years of hands-on experience specifically in DevSecOps or cybersecurity-focused infrastructure roles
• 3+ years of experience in DevOps, System Administration, or Infrastructure Engineering
• Proven experience integrating security tools and processes into CI/CD pipelines and both cloud and on-premise infrastructure
• Strong expertise in vulnerability management, including scanning, analysis, and remediation
• Proficient scripting skills (Python, Bash, PowerShell, etc.) for automation and log analysis
• Solid understanding of operating system security (Linux and Windows) and computer network security principles
• Experience with secrets management, identity and access management (IAM), and infrastructure hardening
• Hands-on experience with SIEM and SOAR platforms for security monitoring and automated incident response
• Knowledge of cybersecurity controls and technologies (firewalls, IDS/IPS, WAF, etc.)
• Practical understanding of the Secure Development Lifecycle (SDL), including threat modeling, secure design, SAST, DAST, and secure deployment practices
• Strong analytical and problem-solving skills
• Ability to collaborate effectively with cross-functional teams and communicate security risks and recommendations clearly
• Intermediate or higher level of English 

Will be a plus:

• Experience in CFD domain
• Security certifications (e.g., CISSP, CKS, OSCP, etc.)

We offer

• Tax expenses coverage for private entrepreneurs in Ukraine
• Expert support and guidance for Ukrainian private entrepreneurs
• 20 paid vacation days per year
• 10 paid sick leave days per year
• Public holidays as per the company’s approved Public holiday list
• Medical insurance
• Opportunity to work remotely
• Professional education budget
• Language learning budget
• Wellness budget (gym membership, sports gear and related expenses)