Informacje o stanowisku

technologies-expected :

• AWS
• Google Cloud Platform
• Microsoft Azure
• Kubernetes
• Terraform
• Ansible

• As a Security DevOps Engineer, you’ll be responsible for ensuring that our systems are hardened, monitored, and built with a “security everywhere” mindset. You’ll design architectures where secure workflows are effortless, automated, and deeply integrated with engineering processes. Your work will impact identity management, infrastructure defense, supply-chain integrity, compliance, observability, and the security posture of the entire platform.

• Design unified RBAC/ABAC across OCI, Kubernetes, and internal platforms
• Implement secure, just-in-time privileged access (Teleport, Boundary, etc.)
• Remove long-lived access keys; enforce MFA, SSO, and strong identity policies
• Maintain a strict Zero-Trust philosophy across all environments
• Harden Kubernetes clusters, secure containers, enforce Pod Security Standards
• Manage Network Policies and ensure strong segmentation between environments
• Deploy firewalls, WAFs, and DDoS protection for high-traffic trading APIs
• Oversee secrets lifecycle using OCI Key Management or similar solutions
• Embed SAST/DAST/SCA checks into CI/CD pipelines (GitHub, GitLab, Jenkins)
• Block untrusted code before deployment
• Implement artifact signing (Cosign, Notary) to validate all container images
• Ensure detailed, immutable audit logs across infrastructure components
• Support SOC2, ISO 27001, and financial regulatory requirements
• Integrate security events with monitoring stacks (Prometheus, Grafana, ELK)
• Detect anomalies and unauthorized access in real time

• 4+ years in DevOps, Cloud Security, SRE, or related roles
• Hands-on experience in regulated or high-traffic financial environments
• Clear mindset of “Security as Code” with automation at the center
• Strong understanding of OCI IAM or equivalent (AWS/GCP/Azure)
• Deep knowledge of OIDC, SAML, and modern identity tools (Teleport, StrongDM)
• Expert-level Kubernetes security (K8s contexts, admission controllers like OPA Gatekeeper/Kyverno, service mesh for mTLS)
• Proficiency in Terraform/Ansible and security tooling (Checkov, tfsec)
• Strong background in Linux security (SELinux/AppArmor) and networking (TCP/IP, DNS, BGP, TLS)

• 100% remote role with a top-tier Riyadh fintech
• Modern work environment at a market-leading trading & fintech company - you’ll work with technologies shaping the future of global markets
• Flexible schedule: standard Sunday–Thursday, with Monday–Friday available for top-performing candidates
• 10 days of annual leave, expandable to 20 days after hitting early KPIs or completing the initial months
• Stable long-term B2B collaboration, offering clarity, consistency, and financial security
• Real growth path with meaningful promotions - a globally scaling project creates room to expand your role, compensation, and expertise
• Onboarding and continuous training led by industry leaders - access to knowledge you won’t find in traditional companies
• Work on an innovative platform merging fintech, AI, and enterprise-grade operational automation
• High-impact environment built on ownership, speed, and modern engineering culture
• Competitive compensation and benefits

Szczecin - Oferty pracy w okolicznych lokalizacjach