DevSecOps (Security Engineer)

We are looking for a DevSecOps/Security Engineer focusing on infrastructure security.

We offer a chance to build complex solutions using cutting-edge technologies and best security practices in an atmosphere of creativity and collaboration.

Your responsibilities will be:

• Perform vulnerability management.
• Ensure network and cloud security (AWS).
• Write Ansible and Terraform scripts for infrastructure management.
• Perform Linux hardening
• Write Python/Bash scripts for automatization
• Perform in-depth security audits to identify misconfigurations
• Design and facilitate comprehensive cybersecurity awareness trainings
• Enhance and implement SIEM and EDR solutions for advanced threat monitoring.

Skills and Experience:

• 3+ years of commercial experience in security roles.
• Proficiency in implementing secure development tools such as SAST/DAST/SCA
• Expertise in containerization and orchestration with Docker or Kubernetes.
• Familiarity with cybersecurity frameworks, such as the MITRE ATT&CK Matrix and NIST standards, for effective threat and risk management.
• Solid expertise in Unix-like operating systems.
• Proven experience with SIEM and EDR for advanced threat detection and response

Will be nice to have:

• Hands-on experience with Privileged Access Management (PAM) and Web Application Firewalls (WAF).
• Practical knowledge of cloud platforms such as AWS or GCP.
• Experience with Ansible and/or Terraform

What we offer:

• Being a part of a modern international technology team, with zero bureaucracy, legacy, and technical debt;
• Great opportunities for professional growth and personal fulfilment: great mentors, a cool atmosphere, professional conferences around the globe;
• Remote work from anywhere in the world, flexible schedule;
• A real wage, pay in hard currency, compensation for VMI, corporate sports, and non-core training.