Senior DevSecOps Engineer (SRE/Platform + Security Ownership)

TL;DR

Senior DevSecOps Engineer (SRE/Platform + Security Ownership): Strengthening the DevOps/SRE team and owning security across SDLC and production environment with an accent on driving security best practices, vulnerability management, and penetration testing. Focus on building scalable, reliable infrastructure and embedding security into CI/CD and developer workflows.

Location: Office: Dubai

Company

hirify.global is a leading property technology company in EMEA, operating in the UAE and Spain, with plans to expand into Saudi Arabia and 3 more European markets by 2026, backed by over $140 million from top investors like Sequoia Capital.

What you will do

• Build and operate scalable, reliable cloud infrastructure (Kubernetes/containers).
• Improve observability (metrics, logs, tracing, alerting) and participate in on-call/incident response.
• Define and evolve SRE practices (SLIs/SLOs, error budgets, postmortems).
• Maintain and improve CI/CD pipelines, infrastructure-as-code, and deployment safety.
• Define and roll out security standards and best practices across engineering.
• Embed security into the SDLC (SAST/DAST, dependency and container scanning, secrets management).
• Own end-to-end vulnerability management and external security engagements (penetration testing).
• Lead security monitoring, response readiness, and security awareness initiatives.

Requirements

• 5+ years in DevOps/SRE/Platform Engineering with meaningful security ownership.
• Strong understanding of cloud security fundamentals (AWS/GCP, IAM, networking, encryption, logging).
• Experience with CI/CD and integrating security tooling into pipelines (e.g., SAST, scanning).
• Solid Linux and networking fundamentals; ability to debug production issues under pressure.
• Infrastructure-as-Code experience (Terraform) and containers/orchestration (Docker/Kubernetes).
• Practical knowledge of OWASP Top 10 and secure coding principles.

Nice to have

• Experience implementing or supporting security frameworks/compliance (e.g., GDPR, ISO 27001, SOC 2, PCI).
• Experience with WAF, API security, service mesh security, zero trust patterns.
• Familiarity with SIEM/SOAR and detection engineering concepts.
• Experience running bug bounty programs.
• Coding ability in at least one backend language (e.g., Python, Go, Node.js, Java) to build tooling/automation.

Culture & Benefits

• Part of a company building a global brand in real estate.
• Reshaping the homebuying journey through powerful technology and agent-first tools.
• Working on a SuperApp that empowers real estate agents and mortgage brokers.
• Transforming how property transactions happen to be faster, smarter, and better.
• Join a fast-growing player expanding into new European and Saudi Arabian markets.
• Opportunity to be part of what's next in property technology.