Responsibilities
Creation, deployment, support, and optimization of source code for existing and new versions of applications (PHP, Node.js, Go) using the GitOps approach in a GCP hosting environment (GKE). Design, development, and execution of DevSecOps CI/CD pipelines. Integration of security into DevOps processes to establish a DevSecOps culture. Implementation of security measures at every phase of the software development lifecycle. Designing and developing automation tools and processes with a focus on security and compliance. Debugging monitoring systems and identifying security vulnerabilities. Writing user and technical documentation. Collaborating with security and development teams to create a cohesive and secure infrastructure. Conducting regular security audits and remediation. Ensuring interservice communication over HTTPS/TLS protocols and implementing access to the internal perimeter using various VPN protocols.
Requirements
Experience as a DevOps Engineer, 3+ years.
Experience with cloud providers is required, GCP will be a huge plus.
Ability to work with High Available and High Load systems.
Good knowledge of container tools and orchestration technologies (Kubernetes).
Good knowledge of IaC tools (at least 2 from the list: Terraform, Ansible, Helm, Kustomize).
Experience in DevSecOps / DevOPS CI/CD design and development (GitOps is preferred).
Hands-on experience with Docker containers.
Experience in horizontal scaling of applications and databases.
Database experience (at least 2 from the list: MySQL, Elasticsearch, Clickhouse, Mongodb, Postgres).
Experience in MQ systems (RabbitMQ, Apache Kafka).
Experience with In-memory Store (Redis).
Experience with monitoring tools (kube-prometheus-stack is preferred, zabbix, newrelic).
Proficiency in programming languages (at least 1 from the list: Go, Python, Bash).
Experience in using SAST and DAST tools, and knowledge of other security tools and methodologies.
Familiarity with frameworks Selenium, JMeter.
Experience in setting up overhead security tools: CyberArc, WAF, SiEM, etc. Experience with IDS/IRS systems, file integrity monitoring, WAF, and other methods for detecting and preventing security attacks.
Strong knowledge of ISMS and writing/updating its elements.
Certifications in security (like CISSP, CISM, CEH, etc.) would be a plus.
Will be a plus
Experience with GCP, and knowledge of cloud infrastructure.
Experience with GitOps.
Experience in migrating applications to Kubernetes.
Deep understanding of Linux-like OS processes.
Experience in implementing security controls in containerized environments. Boundless desire to automate any processes with an emphasis on improving security.
Competitive salaries based on your professional experience
Fast growing international company with stable employment
Annual vacation and 1 additional day off on your birthday
Mental Wellbeing Program – the opportunity for free psychological counseling for you and your family members 24/7 hotline and online sessions
Opportunities for advancement, further trainings (over 650 courses on soft and hard skills on our e-learning platform) and coaching
Free English and German language classes - Flexible working hours and hybrid work
Join us today and let’s create a success story together!
Nacre Capital
Ignite Digital Talent
PINKTUM
Santander
360Learning