Senior DevSecOps Engineer

Overview

At Nortal we believe in thinking big – creating solutions that have a meaningful, far-reaching impact, whether through digitizing governments, improved healthcare, convenient telecom services or creating a competitive edge and agility for large businesses, industry, and manufacturing companies. Our projects have touched more than half a billion people’s lives worldwide, and we’re just getting started. Combining that with the unique experience of transforming Estonia into a digital leader, our vision is to build a Seamless Society.   

To reach our ambitious goals, we are looking for Senior DevSecOps Engineer. 

Responsibilities

• Collaborate with development teams in preparing, securing, and executing the deployment of applications. 
• Design and implement secure CI/CD pipelines that include automated security testing (SAST, DAST, SCA, secrets scanning, container scanning). 
• Integrate shift-left security practices into development and DevOps workflows 
• Own and automate security checks across infrastructure as code (IaC), containers, and cloud environments 
• Skillful in tools required to automate, test, deploy, manage, and monitor applicyations 
• Debug production issues across services and levels of the stack  
• Participate in incident response and post-mortem analysis when needed 
• Work in agile development environments with globally distributed teams  

Qualifications

• have good communication skills (spoken and written) with fluent English as essential  
• Proven experience in automating and optimizing development and release processes 
• Have more than 3 years of relevant experience  
• Proficiency with CI/CD tools (Jenkins, GitLab CI, GitHub Actions, or Azure DevOps) 
• Knowledge of infrastructure monitoring systems (e.g., The Elastic Stack, Zabbix, Nagios)  
• Working experience with Cloud environments (AWS, Azure or GCP)  
• Strong hands-on experience with Kubernetes and containerization 
• Familiarity with microservices architecture and infrastructure as code (Terraform, Helm) 
• Solid Linux administration and troubleshooting skills 
• Proficient understanding of code versioning tools such as Git / SVN  
• Good time management and ability to prioritize tasks among multiple/changing priorities to meet deadlines  
• Understanding of the “Shift Left” philosophy and ability to coach teams in its adoption 
• Familiarity with agentless cloud-native security tools (e.g., Wiz) for vulnerability and posture management is highly valued 
• Experience integrating security tools such as is an advantage: 
  • SAST (e.g., SonarQube, CodeQL); DAST (e.g., OWASP ZAP, Burp Suite); SCA (e.g., Snyk, OWASP Dependency-Check); Secrets scanning (e.g., GitLeaks, truffleHog); Container scanning (e.g., Anchore, Grype, Trivy)

Salary ranges: 6000 - 7300 € gross

We like to say that Nortal is a right-sized company – big enough to undertake and impact influential projects yet small enough to care. At Nortal, your voice is heard, and everyone’s input matters. You solve critical problems for interesting customers from different domains. You work with experienced colleagues in a warm environment. You can execute your ideas in a reasonable time frame.

And what you do and learn here are universally relevant and valuable. Last, but not least, Nortal is an agile company with low hierarchy – meaning heavy on common sense, light on rules, and substance is more important than titles! 

#NortalCareers #LI-Hybrid