Overview:
SOFTSWISS continues to expand the team and is looking for a Security DevOps. We need a true, experienced, and accomplished professional who shares our culture and values.
Security team:
SOFTSWISS security team takes care of iGaming services protection, data privacy, and business continuity to ensure that nothing distracts satisfied customers from using our products. We work closely with the IT team that develops and supports our services, and together we create genuinely excellent and secure iGaming products.
Key responsibilities:
- Enhance and maintain automation processes for security operations
- Refactor, optimize, and document existing Python scripts to improve performance and readability
- Develop new Python/GO-based automation tools to streamline security workflows
- Work closely with System engineers to integrate security tools into DevOps workflows
- Monitor and enhance infrastructure security and compliance
- Maintain and optimize Kubernetes (K8s) clusters, ensuring security best practices are implemented. Implement new security services for the entire company
Requirements:
- More than three years of experience as a DevOps engineer or relevant experience
- Strong experience with Python scripting for automation and infrastructure management
- Proven ability to refactor and optimize Python code for better performance and maintainability
- Experience with IaC (Salt Stack, Terraform, Ansible)
- Strong investigative and analytical problem-solving skills
- Strong Linux system administration experience
- Solid experience with Kubernetes (K8s), including security best practices and service diagnostics
- Familiarity with SecOps processes i.e., detection, monitoring, alerting and threat intelligence
- Structured written and oral communication to ensure clarity
- Proficiency in Russian and English at Intermediate level or higher
Nice to have:
- Knowledge of container security best practices and tools for K8s security (e.g., Kyverno, OPA, Kube-bench)
- Practice with Splunk, Clickhouse
- Strong security knowledge of OWASP Top Ten, WAF solution and DDoS protection
- Knowledge of IAM, SSO, VPN, OpenID, SAML
- Experience in Nginx/Flask in-depth configuration
- Knowing how automatic Role-Based access for company should works
- Experience in Public Cloud technologies including Oracle Cloud, GCP and Microsoft Azure specifically in networking and security solutions and implementation
- Hands-on experience with CI/CD tools (e.g., GitLab CI/CD, Jenkins, GitHub Actions)
- Experience working in a security-conscious DevOps environment