DevSecOps Engineer

TL;DR

DevSecOps Engineer: Integrating security practices into the entire software development lifecycle, focusing on secure infrastructure, container security, and compliance. Focus on embedding security in CI/CD pipelines, managing Kubernetes security, and incident response.

Location: Remote

Company

hirify.global is a product company operating in the Web3 and software domains.

What you will do

• Embed security checks, vulnerability scanning, and automated compliance tests into CI/CD pipelines.
• Implement secure cloud and on-premises infrastructure with best practices for access control, encryption, and network segmentation.
• Manage and harden containerized environments including Kubernetes and Docker security.
• Monitor systems for security threats, respond to incidents, and implement continuous improvements.
• Collaborate with developers, SREs, and QA teams to promote security-first development practices and conduct threat modeling.
• Ensure compliance with standards like ISO27001, SOC 2, GDPR, and NIST, maintaining audit readiness.

Requirements

• Strong knowledge of cloud platforms (AWS, GCP, Azure) and their security services.
• Proficiency in scripting/programming languages such as Python, Bash, Go, and TypeScript.
• Experience with CI/CD tools and integrating security into pipelines.
• Hands-on experience with Kubernetes, Docker, and container security tools.
• Familiarity with infrastructure as code and securing IaC workflows.
• Understanding of network security, identity and access management, and secrets management.
• Knowledge of monitoring and logging tools for security observability.
• English: B2 level or higher required

Nice to have

• Experience in penetration testing, red teaming, or security audits.
• Knowledge of zero-trust architectures and microservices security patterns.
• Experience with security automation frameworks and policy-as-code tools.
• Experience or strong interest in Web3 and crypto technologies.
• Certifications such as CISSP, CISM, AWS Security Specialty, or GCP Professional Security Engineer.

Culture & Benefits

• Learning support including courses, English classes, and conferences with up to 100% reimbursement.
• Unique loyalty program with corporate digital miners and passive income opportunities.
• Company-sponsored team retreats in Turkey.
• Memorable events with prizes and recognition programs like "Employee of the Month".
• Flexible days off including holidays based on location, sick days, and vacation days with fast approvals.
• Opportunities for career growth into expert or management roles.
• Flexible hours and remote work promoting work-life fit.