Senior DevSecOps Engineer
1012
JobID
Level
Middle
Department
DevOps
Type
Full Time
Locations
Ukraine | Poland
About the Project
Dcode.tech is looking for a DevSecOps Engineer with deep experience in cloud-based applications and infrastructure. Our team’s goal is to ensure our customer has the most trustworthy technology. To do so, we partner across engineering and operational teams to design and build systems that are secure-by-design.
In this role, you’ll collaborate with our software development and DevOps teams to secure our customers' products, CI/CD infrastructure, and production infrastructure. You’ll also get the opportunity to influence products roadmap by utilizing assess, monitor, and harden the environments.
This role encompasses multiple open positions for candidates with cloud-focused experience in areas like threat modeling and security reviews, detection engineering, incident response, and vulnerability management
Scope of work
- Plan detection use cases and delivering detection capabilities to identify attack tactics, techniques, and procedures
- Play a key role in the security incident response process
- Develop, promote, and monitor the adoption of sound cloud security practices
- Take ownership of vulnerability management and patching policies
- Identify and help mitigating security issues, misconfigurations, and vulnerabilities related to our customers' cloud, container, and Kubernetes infrastructure
- Collaborate with engineering, DevOps, and IT teams to ensure security is at the heart of what we do
- Lead threat modeling exercises around cloud-native, SaaS, and cloud-first technologies
- Mentor and provide technical leadership to other members of the Security team
Required skills
- 5+ years of experience in at least two of the following areas:
- Foundational security engineering experience in AWS, GCP, or Azure; ideally including working with container and Kubernetes-based infrastructure
- Leading security operations functions – including vulnerability management, detection engineering, and incident response – in CI/CD and cloud-native production environments
- Building and executing threat modeling, security design review, and implementation review programs for complex, multi-tenant systems hosted in cloud environments
- Team player!
- Self-learning capabilities
- Good communication skills
- Can-do attitude!
Required Skills
- - 5+ years of experience in at least two of the following areas:
- Foundational security engineering experience in AWS, GCP, or Azure; ideally including working with container and Kubernetes-based infrastructure
- Leading security operations functions – including vulnerability management, detection engineering, and incident response – in CI/CD and cloud-native production environments
- Building and executing threat modeling, security design review, and implementation review programs for complex, multi-tenant systems hosted in cloud environments
- Team player!
- Self-learning capabilities
- Good communication skills
- Can-do attitude!