Informacje o stanowisku

DevOps (Jenkins & CI/CD Ecosystem)

Location: Kraków, Poland (Hybrid: 2 days/week in-office)

Role Overview: We are looking for a Specialist to act as the architect and owner of our central Jenkins Shared Library. This is a high-impact role focused on building opinionated, secure, and scalable abstractions for multi-language development streams. You will bridge the gap between fast-paced delivery and rigorous supply chain security (SLSA, SBOM).

Must have:

• Demonstrated experience designing and maintaining Jenkins pipelines and Jenkins Shared Libraries
• Hands-on experience delivering CI/CD pipelines for multiple languages (Java, Node.js, Python, .NET)
• Strong understanding of containerized build and deployment workflows
• Experience integrating Helm and Terraform into CI/CD pipelines
• Proven experience embedding security and quality tools into CI/CD workflows:
• SonarQube, Sonatype IQ, SAST/DAST, container scanning
• Practical experience with secrets management, preferably HashiCorp Vault
• Solid understanding of software supply chain security concepts (SBOMs, provenance, artifact signing, digests)
• Strong scripting skills (Groovy, Bash, or similar)
• Experience working in DevOps, CI/CD, or Platform Engineering teams
• Selected specialist needs to be self motivated and have a drive for problem solving
• Fluent English

Nice to have:

• Experience with CycloneDX or SPDX standards.
• Background in Internal Developer Platform (IDP) or tooling-focused teams.
• Scaling CI/CD platforms for large-scale, multi-team environments.
• Practical Kubernetes experience in a cloud-native delivery context.

DevOps (Jenkins & CI/CD Ecosystem)

Location: Kraków, Poland (Hybrid: 2 days/week in-office)

Role Overview: We are looking for a Specialist to act as the architect and owner of our central Jenkins Shared Library. This is a high-impact role focused on building opinionated, secure, and scalable abstractions for multi-language development streams. You will bridge the gap between fast-paced delivery and rigorous supply chain security (SLSA, SBOM).

,[Design, develop, and continuously improve a reusable Jenkins Shared Library providing standardized stages for Building, Testing, Security/Compliance, and Deployment., Enable seamless adoption for engineering teams through a declarative configuration model that balances opinionated defaults with extensibility., Implement and maintain robust CI/CD workflows for a diverse technology stack, including Java (Maven), .NET, Node.js (NPM), and Python (pytest)., Orchestrate containerized build processes, including image tagging, metadata management, and publishing digests., Provide automated pipeline support for Infrastructure-as-Code (IaC) utilizing Helm and Terraform., Integrate and manage first-class security instrumentation: SonarQube for code quality, Sonatype IQ, SAST/DAST, and container scanning tools., Execute secure secret management strategies, with a focus on HashiCorp Vault., Strengthen software supply chain security by generating SBOMs, managing artifact metadata, and ensuring provenance/attestations aligned with SLSA., Construct and oversee reliable deployment integrations and regression testing pipelines across all environments., Ensure every release process is auditable, repeatable, and highly stabl Requirements: DevOps, Jenkins, Security, Java, Maven, Node.js, Python, Helm, Terraform, SonarQube, SAST, DAST, HashiCorp Vault, Groovy, Bash, Cloud, Jenkins Shared Libraries, Sonatype, CycloneDX , SPDX , Kubernetes, Internal Developer Platform

Praca Kraków

Kraków - Oferty pracy w okolicznych lokalizacjach