DevSecOps Engineer
fully flexible
Offer summary
Qualifications:
At least 3 years of hands-on DevOps experience with a focus on security., Proficiency in Golang or Python scripting languages., Experience with cloud platforms such as AWS or GCP, including networking and security configurations., Knowledge of security frameworks like OWASP, NIST, or SANS, and familiarity with intrusion detection and prevention systems..Key responsibilities:
- Collaborate with stakeholders to design and implement security protocols for microservices.
- Automate security operations and build secure APIs using scripting languages.
- Secure cloud environments and monitor for threats using various security tools.
- Promote a security-first mindset within the DevOps team and across the organization.
Job description
We are a Polish branch of a fastgrowing InsurTech product company from Silicon Valley Hippo Insurance. Our mission is to revolutionize home insurance in the US, starting from IoT monitoring devices to our industryleading software.
How do we want to get there? We need a topnotch talent, just like you!
Putting a lot of effort into hiring toptier professionals is a proof that we care a lot about tech experience, the attitude, human approach, and what we could call „culture fit”.
„SwingDev is all about people” yes, it may sound a bit cliche. But whether were writing code or just hanging out, we know that people are at the heart of everything we do. We like to have a good time and keep things light, even when were tackling big projects. We could brag about what’s making us special, but we’ve boiled it down to two key ingredients: mature, companionable people who, rather than compete, prefer to inspire and have each other’s backs; a culture of trust, empathy, and positivity that keeps us together, lets us interact as teammates and friends, and truly enjoy the ride.
So if youre a DevOps Engineer with a knack for security and looking to shake things up while having a good time, youve come to the right place. 🚀
About the role:
At Hippo, were tackling complex challenges in engineering, data, and operations that are transforming an outdated insurance industry. As a DevSecOps Engineer, youll play a key role in expanding our suite of products, supporting both mature offerings and new MVPs. In this role, you’ll use your understanding of cybersecurity and risk management to drive security projects from concept to completion. You’ll collaborate with stakeholders to create effective security designs and protocols while securing microservices and monitoring for threats.
If you’re passionate about crafting clear security designs and protocols, driving security projects from start to finish, securing microservices, and identifying vulnerabilities in distributed systems while analyzing logs and security signals, we’d love to hear from you!
What will you do?In this role, you’ll collaborate closely with various stakeholders, including Security Engineers, Engineering Managers, and developers to create effective security designs and protocols while securing microservices and monitoring threats. That’s why this position requires not just strong technical skills, but also great communication abilities, a knack for mentoring, and knowledgesharing. You’ll be responsible for building a worldclass, scalable, and resilient security infrastructure that keeps the Hippo platform safe and sound. You’ll boost developer productivity by integrating security tools and processes into our CICD pipelines, as well as monitoring systems and cloud environments to ensure everything runs smoothly. You’ll be using Golang, Python, and other scripting languages like Bash on a daily basis to automate security operations, build secure APIs, and develop serverless security functions. You’ll get to work with various cloud providers, databases, opensource tools like Terraform, Kubernetes, and Docker, and a range of security tools like CSPM, DSPM, WAF, ZTN, DAST, SAST, Vault, and more, giving you a chance to explore and enhance our security setup. You’ll be the advocate for a securityfirst mindset within the DevOps team and across the organization, promoting awareness and best practices related to infrastructure security. Youll be able to put your mark on the project, and you will take ownership and responsibility for what you do. This isn’t a “just keep the lights on” role — you’ll shape how things are done from the ground up. You’ll work closely with other Senior DevOps Engineers, sharing responsibility for oncall rotations and keeping the platform healthy.
We might be a match if you…Have 3+ years of handson DevOps experience and security is an area that you understand, have skills in and are passionate about. Are skilled in Golang or Python. Have handson experience with tools like AWS, Kubernetes, Terraform, Docker, and modern CICD systems. Understand AWS VPC or GCP networking, including key concepts like network separation, security groups, and ACLs. Have worked with security frameworks such as OWASP, NIST, or SANS and know your way around Intrusion Detection and Prevention Systems (IDPS). Have experience securing CDN configurations and can integrate them into a broader security strategy. Can recognize and defend against common CDN attack vectors like DDoS attacks, cache poisoning, and content hijacking. Know about authentication protocols like SAML, OIDC, OAuth or similar. Are comfortable working with security logging and metrics systems to keep things running smoothly. Enjoy working in a small, focused, and highly efficient team. Have a great command of English (written & spoken). Are available in the afternoons – youll join a PolishAmerican team, so you can expect afternoon meetings. Rest assured, we prioritize worklife fit, respect everyones private lives, and don’t work at night but we still must ensure that communication between the time zones is effective.
Relevant Certifications (CCSP, CSSLP, AWS certifications, etc.) Experience with SOX 404(b), SOC2.
Recruitment process:Send us your CV – its the best way for us to get to know you. Meet Gabi, one of our Recruiters. Join Paweł, our Sr. DevOps Engineer, for a 60minute technical interview. Have a conversation with Eli (Sr. Manager, DevOps & SRE) and Shaun (Sr. Manager, Cybersecurity). Catchup with Tomek (Security & Technology Director). Meet on the final stage with Marcin and Alicja. and... welcome aboard! 👋
What will you do?
We might be a match if you…
You will get extra points for:
Recruitment process:
Required profile
Experience
Level of experience: Senior (5-10 years)
Spoken language(s):
English
Check out the description to know which languages are mandatory. Other Skills
- Mentorship
- Teamwork
- Communication
DevSecOps Engineer Related jobs
Senior DevSecOps Engineer
Senior DevSecOps Engineer
Today
Raft
- From: Colorado (USA), Florida (USA), Massachusetts (USA), Ohio (USA), Texas (USA), Virginia (USA) (Full Remote)
- Full time
DevSecOpsAWS Cloud ServicesCI/CDKubernetes
DevSecOps Engineer
DevSecOps Engineer
1 day ago
The Rawlings Group
- From: United States, Roseville (Full Remote)
- Full time
Salesforce SecurityCloud ComputingInfrastructure as Code (IaC)DevSecOps
Software Engineering SMTS TM DevSecOps Engineer
Software Engineering SMTS TM DevSecOps Engineer
5 days ago
Salesforce
- From: Washington (USA) (Full Remote)
- Full time
AWS Cloud ServicesSQL (Programming Language)Apache SparkPython (Programming Language)
Azure DevSecOps Engineer
Azure DevSecOps Engineer
30+ days ago
EUROPEAN DYNAMICS
- From: Greece, Belgium (Full Remote)
Git (Version Control System)IDoc (Intermediate Document)Azure DevOpsCI/CD
DevSecOps Engineer
DevSecOps Engineer
5 days ago
Swing Development (SwingDev)
- From: Poland (Full Remote)
- Full time
Personal SecurityPython (Programming Language)DevOps