Overview:
We’re looking for a DevSecOps Engineer to join our security team. This is a hands-on role focused on application security and CI/CD pipeline hardening, ideal for someone who wants to grow in DevSecOps while working with modern tooling and engineering teams.
About Product:
Finteqhub
А PCI DSS certified payment gateway for online businesses, providing integration with payment systems via a single software platform.
Learn more
Key responsibilities:
- Design and implement security checks in CI/CD pipelines (GitHub, GitLab)
- Configure and maintain SAST, SCA, and container scanning tools (Trivy, Dependabot)
- Identify and remediate vulnerabilities in applications and container images
- Support container image scanning and image signing practices
- Write and maintain automation scripts (Python, Bash)
- Collaborate with engineering teams to embed security into development workflows
Required Experience:
- 2–4 years of experience in DevOps, DevSecOps, or Security roles
- Hands-on experience with CI/CD pipelines (GitHub or GitLab)
- Practical experience with security tools: SAST, SCA, container scanning
- Basic scripting skills (Python, Bash)
- Understanding of OWASP Top 10
Nice to have:
- Basic understanding of Kubernetes and containers
- Familiarity with Kubernetes security fundamentals (RBAC, policies)
- Exposure to Kubernetes security tools (Kyverno, OPA, StackRox)
- Knowledge of container image signing (Cosign, Sigstore)
- Experience with cloud platforms (AWS, GCP, Azure, or OCI)
Main Advantages
- Private health insurance
- Sports benefits
- Comprehensive Mental Health Program
- Free English lessons (online)
- Local language courses
- Paid time off
- Maternity leave support
- Referral program rewards
- Upskilling, internal workshops, and participation in professional conferences and corporate events
