Next job

Senior DevSecOps Engineer in IT SmartFlex

Posted more than 30 days ago

2 views

IT SmartFlex

IT SmartFlex

0
0 reviews
Without experience
Kyiv
August 15, 2024 Senior DevSecOps Engineer Kyiv, remotely We are IT SmartFlex , a Ukrainian IT company founded in 2019 as a subsidiary of the leading mobile operator Vodafone Ukraine. 🌟 Our mission is to bring together talented experts in telecommunications and software to create innovative solutions and products that make the lives of millions of users better and more convenient. About us: — We develop WOW-digital services that every second Ukrainian can use. —We create software pro

August 15, 2024

Senior DevSecOps Engineer

Kyiv, remotely

We are IT SmartFlex , a Ukrainian IT company founded in 2019 as a subsidiary of the leading mobile operator Vodafone Ukraine.

🌟 Our mission is to bring together talented experts in telecommunications and software to create innovative solutions and products that make the lives of millions of users better and more convenient.

About us:
— We develop WOW-digital services that every second Ukrainian can use.
—We create software products in Ukraine that are interesting beyond its borders.
— We use the latest modern technologies and tools.

The main area of ​​IT SmartFlex activity is R&D for telecom - this is one of the most high-tech industries, which today covers not only mobile communication services, but also areas such as self-service services, Vig Data, IoT, CRM , cloud services.

Our values:
—Responsibility 🛡️
We believe that each member of our team is responsible for the result of their work and affects the success of the company.

— People-centricity 👥
We listen carefully to the needs of our users and always strive to exceed their expectations.

- Unity 🙏
We are convinced that together we are stronger. The unity of our team allows us to overcome any challenges and achieve our goals.

—Trust 🤝
Trust is the basis of our relations both within the company and with our partners. We believe in honesty and transparency in all our actions.

—Courage 💪
We are not afraid of new challenges and always strive for the best. Courage allows us to go beyond the usual, experiment and find new ways to develop.

To expand the team, we are looking for a Senior DevSecOps Engineer.

Functional Responsibilities:

  • Implement SDLC security best practices. Promote secure coding practices.
  • Conduct code reviews to fix security issues. Integrate security tools into the development process. Setting up, configuring and running security tools (SAST, SCA, DAST, IAST, Container Security).
  • Security automation in CI/CD.
  • Infrastructure protection support. Periodic review and strengthening of infrastructure.
  • Conduct regular threat modeling. Document and prioritize threats.
  • Develop and maintain security requirements. Update documentation.
  • Participation in security trainings for the development team. Promote a "Security Champions" mentality.
  • Participation in incident response activities.
  • Standards compliance and audit support.
  • Monitoring and logging.

Required Skills:

  • 5+ years of proven IT experience with a focus on DevOps and Security.
  • 3+ years of proven experience in a DevSecOps role or similar position.
  • 5+ years of experience in Linux-based systems and TCP/IP networking.
  • 3+ years of experience with IaC and Config Management tools such as Terraform and Ansible.
  • Knowledge at the expert level : securityand SDLC, threat modeling, risk assessment, infrastructure protection support.
  • Good skills : Linux, Networking, Docker, K8s, Rancher, Harbor, Vault, SAST/SCA/DAST tools, Gitlab CI/CD, SonarQube, trivy, Jira, Confluence. Cloud security. Security tools (SAST, SCA, DAST, IAST).
  • Understanding : OWASP Top10 (Web, API, Mobile, Security Practices), CSA Cloud Security Matrix, STRIDE.
  • Good Knowledge : DevSecOps Toolchain, DevSecOps Maturity Model.
  • Good communication skills. Ability to explain the definition of security in simple language. Presentation and demonstration skills.
  • Level of English - from Upper-Intermediate

Will be an advantage:

  • Proficient or at the stage obtaining Kubernetes Security (CKS or CKA)
  • Knowledge: ISO 27000, ISO 25000, NIST, SANS, MITER AT@CK, MITER D3F3ND.
  • Availability of certificates: CISSP, CCSP, CompTIA Security+, AWS CSS, CCNP Security.

We offer:

  • Interesting projects and advanced technologies
  • Highly professional and motivated team
  • >
  • Flexible work schedule and the possibility to work remotely
  • Corporate trainings, professional conferences, specialized courses
  • Exchange of knowledge and best practices, communities of interest
  • Corporate equipment
  • Medical insurance from the first month of work
  • 24 days of paid vacation
  • Paid sick leave
  • Payment of mobile communication

If you value teamwork, strive to work with advanced technologies, are set on professional growth together with the company - we are waiting for you!

Without experience
Kyiv
Want to get related jobs?
New job openings in your Telegram
Subscribe
We use cookies
accept