DevOps Security Engineer (Blockchain)

TL;DR

DevOps Security Engineer (Blockchain): Building and optimizing security posture throughout the software delivery lifecycle with an accent on vulnerability analysis, pipeline security, and infrastructure hardening. Focus on defining security gates, automating security tooling, and ensuring compliance in cloud-native environments.

Location: Onsite in Dublin, Galway (Ireland) or London (UK)

Company

hirify.global powers the blockchain economy by providing industry-leading infrastructure solutions like dedicated nodes, APIs, staking, and MPC tech to exchanges, custodians, crypto platforms, and financial institutions.

What you will do

• Conduct deep-dive vulnerability and security reviews of all software releases, including manual code review and automated scanning output triage.
• Own and continuously improve automated security tooling integrated into CI/CD pipelines, expanding coverage and optimizing performance.
• Develop and operate custom security automation using Python, Go, or Bash for policy enforcement, secrets detection, and image signing.
• Audit infrastructure-as-code (IaC) stacks for misconfigurations and enforce cloud security policies across AWS, Azure, or GCP.
• Harden container orchestration environments with RBAC, network policies, and supply chain integrity.
• Collaborate with platform teams to ensure sufficient logging, monitoring, and alerting for incident detection.

Requirements

• 3–5+ years in a combined DevOps, Security Engineering, or DevSecOps role.
• Deep, hands-on experience with CI/CD pipeline engineering (Jenkins, GitLab CI, or GitHub Actions).
• Production experience implementing and tuning SAST, DAST, and SCA tools within automated pipelines.
• Proven ability to secure production workloads on at least one major cloud provider (AWS, Azure, or GCP).
• Hands-on experience securing Docker and Kubernetes environments, including image scanning and runtime security.
• Proficiency with Infrastructure as Code (Terraform, CloudFormation, or Pulumi) and auditing for security misconfigurations.
• Strong coding ability in Python, Go, or Bash for building custom tooling and security automation.
• Experience running or significantly contributing to a vulnerability management program.

Nice to have

• Experience with compliance-as-code frameworks and automating evidence collection (SOC 2, ISO 27001, FedRAMP, or PCI-DSS).
• Familiarity with eBPF-based security observability tools or kernel-level runtime security.
• Background in penetration testing or red team exercises against cloud-native infrastructure.
• Experience building a software supply chain security program (SLSA framework, Sigstore/Cosign).
• Knowledge of GitOps workflows (ArgoCD, Flux).

Culture & Benefits

• Be the engineering team's security partner, providing self-service tooling and fast feedback loops.
• Build and maintain internal security guardrails like pre-commit hooks and hardened CI templates.
• Run targeted threat modeling sessions for high-risk features.
• Contribute to internal security standards, runbooks, and incident response playbooks.
• Globally distributed team with an inclusive environment.
• Commitment to equal opportunity employment.