Infrastructure Security Engineer/DevSecOps (AWS/Kubernetes)
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Infrastructure Security Engineer/DevSecOps (AWS/Kubernetes): Integrating security best practices throughout the SDLC for cloud-native applications and infrastructure with an accent on security automation and cloud-native security. Focus on designing automated security pipelines, securing Kubernetes clusters, and implementing service mesh security.
Location: Remote (Worldwide). Relocation support available to hubs in Cyprus, Spain, Georgia, Serbia, or Kazakhstan.
Company
is a fintech company focusing on innovative financial solutions and a high-tech environment.
What you will do
- Design and maintain automated security controls and CI/CD pipelines in GitLab, including SAST, DAST, SCA, and IaC scanning.
- Implement and enforce security best practices for AWS services such as IAM, VPC, S3, EC2, Lambda, and EKS.
- Secure Kubernetes clusters, manage pod security policies, container runtime security, and secrets management.
- Implement and manage security features within a service mesh (e.g., Istio) for traffic encryption and authorization.
- Participate in threat modeling and risk assessments for new features and infrastructure changes.
- Evaluate and implement new security tools to enhance the company's overall security posture.
Requirements
- 1+ years of experience in DevSecOps, Cloud Security, or a related cybersecurity role.
- Extensive experience with AWS (Azure/GCP) security services, best practices, and architecture.
- Strong knowledge of Kubernetes architecture, security configurations, and secure workload deployment.
- Hands-on experience designing and securing CI/CD pipelines, preferably using GitLab.
- Proficiency with Infrastructure as Code (IaC) tools like Terraform or CloudFormation.
- Solid understanding of network protocols, firewalls, VPNs, and network segmentation in cloud environments.
Nice to have
- Experience managing and fine-tuning Web Application Firewalls (WAF).
- Relevant industry certifications such as CKA, CKAD, or CKS.
- Familiarity with compliance frameworks like PCI DSS or GDPR.
Culture & Benefits
- Relocation support for employees and their families to Cyprus, Spain, Georgia, Serbia, or Kazakhstan.
- Flexible work arrangement: choice between remote work or working from one of the office hubs.
- Comprehensive healthcare coverage.
- Education budget for language lessons, professional training, and certifications.
- Wellness budget for mental health and fitness activity reimbursements.
- 20 days of annual leave and paid sick leave.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →