Job Description
Overview:
We're looking for a DevSecOps Engineer to join our security team. This is a hands-on role focused on application security and CI/CD pipeline hardening, ideal for someone who wants to grow in DevSecOps while working with modern tooling and engineering teams.
About Product:
Finteqhub
А PCI DSS certified payment gateway for online businesses, providing integration with payment systems via a single software platform.
Learn more
Key responsibilities:
Design and implement security checks in CI/CD pipelines (GitHub, GitLab)
Configure and maintain SAST, SCA, and container scanning tools (Trivy, Dependabot)
Identify and remediate vulnerabilities in applications and container images
Support container image scanning and image signing practices
Write and maintain automation scripts (Python, Bash)
Collaborate with engineering teams to embed security into development workflows
Required Experience:
2–4 years of experience in DevOps, DevSecOps, or Security roles
Hands-on experience with CI/CD pipelines (GitHub or GitLab)
Practical experience with security tools: SAST, SCA, container scanning
Basic scripting skills (Python, Bash)
Understanding of OWASP Top 10
Nice to have:
Basic understanding of Kubernetes and containers
Familiarity with Kubernetes security fundamentals (RBAC, policies)
Exposure to Kubernetes security tools (Kyverno, OPA, StackRox)
Knowledge of container image signing (Cosign, Sigstore)
Experience with cloud platforms (AWS, GCP, Azure, or OCI)
Our Benefits:
Full-time remote work opportunities and flexible working hours
Private insurance
Additional 1 Day Off per calendar year
Sports program compensation
Comprehensive Mental Health Programme
Free online English lessons with a native speaker
Generous referral program
Training, internal workshops, and participation in international professional conferences and corporate events.