We’re looking for a Senior Security DevOps Engineer to join a fast-growing fintech company that builds a digital trading and investment platform.
responsibilities :
Design and maintain secure identity and access management (IAM) strategies across cloud infrastructure, Kubernetes clusters, and internal platforms using RBAC and ABAC models.
Implement privileged access management solutions to enable secure, temporary access to production environments while eliminating long-lived credentials.
Enforce strong authentication and identity policies, including MFA, SSO integrations, and modern identity standards such as OIDC and SAML.
Secure containerized environments by implementing Kubernetes security best practices, including network policies, workload isolation, and secure container lifecycle management.
Develop and maintain network security architecture, including segmentation strategies, firewall configurations, and protection mechanisms for high-throughput APIs.
Manage the lifecycle of secrets and sensitive credentials, ensuring secure storage, rotation, and access control across environments.
Integrate security scanning and testing tools into CI/CD pipelines to detect vulnerabilities during development and deployment stages.
Integrate security monitoring with observability tools to detect anomalies, threats, or unauthorized access attempts in real time.
Promote Security as Code practices by automating security policies, checks, and infrastructure configurations.
requirements-expected :
8+ years of experience in DevOps, Cloud Security, Site Reliability Engineering, or similar roles.
Experience working with high-traffic systems or regulated environments, such as financial platforms or other compliance-driven industries.
Strong understanding of cloud identity systems and modern authentication protocols.
Advanced knowledge of Kubernetes security, container orchestration, and cluster hardening.
Hands-on experience with Infrastructure as Code tools such as Terraform or Ansible.
Solid understanding of Linux security mechanisms and networking fundamentals, including TCP/IP, DNS, and TLS.
Experience implementing security automation within CI/CD pipelines.
