Required skills:
2+ years of commercial experience in DevSecOps, Cloud Security or a related role
Good practical understanding of DevSecOps and application security concepts (secure SDLC, vulnerability management, threat modeling, secrets management, IAM, encryption)
Hands-on experience with security tooling in CI/CD pipelines (SAST, DAST, SCA, SBOM, container and IaC scanning)
Solid experience with at least one major cloud provider (Azure, AWS or GCP) and their security-related services
Experience with container platforms (Docker, Kubernetes) and related security practices
Ability to design and maintain secure CI/CD pipelines
Hands-on experience with IaC, orchestration and configuration management tools (e.g. Terraform, Ansible, Helm)
Good programming and scripting skills in Bash and Python
Understanding of secure architecture principles and security best practices in both cloud and on-prem environments
Strong communication and stakeholder management skills, with the ability to work directly with senior management, operate fully autonomously, and deliver high-quality results with minimal supervision
Fluent in English
Nice to have:
Experience working in a distributed / international team
Practical experience in designing and implementing security for modern GenAI
architectures
Security certifications with a focus on DevSecOps and cloud security
Practical experience with ASPM, CNAPP, CWPP and CSPM platforms