Senior DevSecOps Engineer

TL;DR

Senior DevSecOps Engineer: Integrating and operating security controls across the SDLC with an accent on embedding SAST and SCA tooling in CI/CD pipelines. Focus on building dedicated security pipelines and configuring repository policies to reduce supply-chain risk.

Location: Remote, but must be located in the Czech Republic.

Company

hirify.global provides data resilience through data backup, data recovery, data portability, data security, and data intelligence.

What you will do

• Integrate and manage security tooling in CI/CD, including SAST, SCA, secrets scanning, and container image scanning.
• Build and optimize security pipelines and reusable templates in Azure DevOps, Jenkins, GitLab CI/CD, and TeamCity.
• Collaborate with Application Security and Development to triage findings, provide actionable fix guidance, and track remediation.
• Configure and maintain repository policies and curation in package repositories for NuGet, npm, and similar.
• Monitor and analyze scanning results across environments and create concise dashboards and metrics to show coverage, trends, and risk reduction.
• Enhance CI/CD pipelines with secure-by-default configurations and improve developer experience through documentation and enablement sessions.

Requirements

• Experience in DevOps, SRE, or Infrastructure Engineering with hands-on CI/CD integration.
• Strong understanding of SSDLC and DevSecOps, including risk-based gates and remediation workflows.
• Hands-on experience with CI/CD platforms (Azure DevOps, Jenkins, GitLab CI/CD, TeamCity) and pipeline-as-code (YAML).
• Experience integrating and tuning security tools (SAST, SCA), and familiarity with secrets and container image scanning.
• Knowledge of artifact repositories, dependency management, and vulnerability/license scanning with policy configuration.
• Solid Linux and Windows skills, including CLI usage, log analysis, basic networking, and build/container troubleshooting.

Nice to have

• Scripting in Python, PowerShell, or Bash.
• Familiarity with compliance frameworks and SBOM experience.

Culture & Benefits

• 25 vacation days, 4 sick days, 21 paid medical leave days, plus 4 extra global hirify.globale Days for self-care and 24 paid volunteer hours annually through hirify.global Cares.
• Premium private medical insurance for employees and dependents.
• Daily meal vouchers for restaurants and groceries (180 CZK per working day).
• Flexible cafeteria platform with thousands of lifestyle benefit options.
• Multisport Card for gym and wellness, with family add-on options.
• Opportunities to learn and grow through on-demand libraries (LinkedIn Learning, O’Reilly), mentoring, workshops and learning events.