DevSecOps Lead Specialist
Tirana - Rruga Dritan - 40h
Sisal
Sisal.com: sito corporate di Sisal. Scopri il profilo istituzionale della prima azienda italiana ad operare nel settore del gioco come Concessionario dello StatAbout us:
Founded on the dream and insight of three sports journalists in 1945, Sisal was the first Italian company to operate in the gaming and betting industry as a government licensee.
As of August 4, 2022, Sisal is part of Flutter Entertainment plc, the world's largest online sports betting and iGaming operator, with a portfolio of globally recognized brands listed on the London and New York stock exchanges.
The company’s commitment to building a more responsible future rests on a sustainability strategy with long-term objectives to affirm Sisal as a leader in Responsible Gaming, an innovative and sustainable company, and an exemplary work environment.
We are looking for an experienced DevSecOps Lead Specialist to join our team. You will play a crucial role in building, implementing, and managing secure DevOps practices, processes, tools, and frameworks. You will be responsible for driving security best practices across the development and operations teams while ensuring seamless integration between security, development, and operations.
What you’ll do:
You will work closely with the DevSecOps Governance team within the IT Strategy & Enterprise Architecture division, reporting directly to the DevSecOps Team Lead.
You will lead the design, implementation, and optimization of DevSecOps pipelines, integrating security into CI/CD pipelines across the development lifecycle.
You will ensure that security is embedded at every stage of the software development lifecycle by identifying vulnerabilities, automating security processes, and enforcing security policies.
You will automate security controls, infrastructure management, and compliance processes using tools like Ansible, Terraform, and Jenkins/Tekton.
You will collaborate closely with development, operations, and security teams to create a unified approach to managing security, quality, and operational performance in an automated environment.
You will help establish incident response processes and integrate monitoring, alerting, and auditing tools to proactively detect and respond to security threats .
You will continuously evaluate and enhance DevSecOps processes, introducing improvements in tools, technologies, and security practices to meet evolving business and security needs.
You will ensure compliance with industry standards and regulatory requirements, providing governance around security measures and participating in risk assessments.
Who you are:
You have at least 2 years of experience in DevOps or DevSecOps roles, with a strong understanding of secure software development, CI/CD pipelines, Test-Driven Development (TDD), and security automation.
You have experience with distributed systems, microservices architectures, and containerized environments using platforms such as OpenShift, Docker, and Kubernetes.
You have in-depth knowledge of security tools and best practices, including vulnerability management, container security, and secure coding practices.
You are proficient with tools such as Kustomize/Helm (YAML templates), Jenkins/Tekton, Log stack architectures, Git/GitFlow, and container orchestration technologies.
You possess strong programming experience in Java/Python OOP (with a focus on SpringBoot or React), as well as design patterns.
You are experienced with infrastructure as code tools (e.g., Terraform, Ansible) and proficient in Linux Shell scripting.
You hold a Bachelor’s degree in Computer Science, Information Engineering, or a related field.
You are fluent in both English and Italian, spoken and written.
Preferably, you also have:
You have previous experience leading DevSecOps initiatives or managing cross-functional teams in security-focused DevOps environments.
You have certifications such as CKA, CKAD, CKS (Kubernetes-related), or other relevant security certifications
You are familiar with advanced security monitoring, logging, and alerting tools and have hands-on experience implementing security in CI/CD pipelines.
What we offer you/you can expect from us:
Permanent contract;
Hybrid work;
An inclusive place to work;
Company-Owned Devices: laptop and business mobile phone;
Meal Allowance;
Supplemental Health Insurance.
Pension Fund.
Looking for a role that can support your learning and career goals:
Psychological well-being: online meditation courses, medical online service, counseling service thanks to the support of certified psychologists and coaches;
Continuous learning for soft and hard skills (es. learning platform; managerial learning to be fully exploited thanks to Flexi Learning, which allows you to dedicate at least 4 hours per month for your professional growth);
Support for parents, children and financial aid for mothers;
Volunteering during your working hours.
Equal Opportunity
Sisal is an Equal Opportunity Employer. Diversity and Inclusion are fundamental values for us. We welcome any candidate without distinction of sex, age, culture, religion, ethnicity, sexual orientation, gender identity and expression.
Location: Tirana, Albania
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Ansible Audits Automation CI/CD Compliance Computer Science DevOps DevSecOps Docker Governance Helm Incident response Java Jenkins Kubernetes Linux Microservices Monitoring Python Risk assessment Scripting SDLC Strategy TDD Terraform Vulnerabilities Vulnerability management
Perks/benefits: Career development Gear
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.