We are seeking a DevSecOps Security Specialist who can not only implement DevSecOps practices but also act as a subject matter expert in security. The ideal candidate will be responsible for embedding security throughout the software development lifecycle, securing infrastructure operations, and ensuring compliance with industry standards.
Key Responsibilities
- Design, implement, and optimize secure CI/CD pipelines.
- Integrate security tools (SAST, DAST, SCA, Container Security, Secrets Management) into development workflows.
- Manage and monitor cloud and on-premise infrastructure with advanced security solutions.
- Conduct threat modeling, risk assessments, and manage security incident response.
- Deliver security training and raise awareness among development teams.
- Ensure compliance with security standards (ISO 27001, OWASP, CIS, PCI-DSS, etc.).
Requirements
- 46 years of experience in DevOps/Cloud/Security, with at least 23 years specializing in security.
- Hands-on experience with CI/CD tools (GitLab CI, Jenkins, GitHub Actions, etc.).
- Strong knowledge of Application Security (OWASP Top 10, API Security).
- Proficiency in Linux/Windows administration and scripting (Bash, Python, PowerShell).
- Experience with SIEM/SOAR implementation and incident response.
Preferred Qualifications
- Relevant security or cloud certifications: CISSP, OSCP, CKA, AWS/Azure Security Specialty.
- Experience with Zero Trust Architecture, IAM, and PAM solutions.
- Skills in forensics analysis and incident response.
Benefits
- Competitive salary with project bonuses and 13th, 14th, and 15th-month salary packages.
- Opportunity to work on large-scale microservices systems handling tens of millions of transactions per day.
- Agile working environment with strong support for continuous learning and international certifications.
