DevSecOps Engineer

About the role

We are looking for a DevSecOps Engineer to embed security into our software development pipelines and infrastructure. The successful candidate will combine strong software development experience with deep security knowledge to protect client applications throughout the CI/CD lifecycle.

Key responsibilities

• Design, implement and maintain security controls within CI/CD pipelines.
• Automate static and dynamic security testing as part of the build and release process.
• Provide guidance and best‑practice recommendations to development teams for secure coding.
• Monitor emerging vulnerabilities and attack techniques and apply mitigations.
• Collaborate with cross‑functional teams to integrate security throughout the software development lifecycle.
• Participate in incident response, remediation and threat‑modeling activities.
• Ensure compliance with relevant industry and regulatory standards.

Required profile

• Solid background in software development and information security.
• Strong understanding of DevOps principles, CI/CD concepts and cloud environments.
• Experience with security testing tools and common web/mobile vulnerabilities.
• Excellent communication and documentation skills.

Required skills

• Python
• Java
• .NET
• JavaScript
• Burp Suite
• OWASP ZAP
• AWS
• Azure
• Docker
• Kubernetes