Remote
Senior DevSecOps Engineer
We’re looking for a Senior Security DevOps Engineer to join a fast-growing fintech company that builds a digital trading and investment platform.
Salary: 7000-8000 USD/Month
100% remote
Full-time
B2B Requirements
8+ years of experience in DevSecOps, Cloud Security Engineering, or a closely related security-focused infrastructure role.
Experience working in regulated, high-availability environments, such as fintech, banking, trading, or payments.
Demonstrated ability to work across both architecture/design and hands-on implementation without requiring a handoff.
Advanced knowledge of Kubernetes security and cluster hardening, including NetworkPolicies and workload isolation.
Hands-on experience with Infrastructure as Code tools such as Terraform and Ansible, with security scanning via tfsec and Checkov.
Strong understanding of identity and access management, including HashiCorp Vault, HashiCorp Boundary, OAuth2, OIDC, and RBAC/ABAC models.
Experience implementing security gates (SAST, SCA, DAST) within CI/CD pipelines using GitHub Actions, Jenkins, and ArgoCD.
Programming skills in Go and/or Python for security automation, plus Shell scripting.
Strong hands-on experience with at least one major cloud provider: OCI, AWS, or GCP. Nice to have
Hands-on experience with Oracle Cloud Infrastructure (OKE, OCI Vault, OCI KMS).
Exposure to trading system environments.
Working knowledge of CSA frameworks and OWASP CI/CD Top 10.
Experience with software supply chain integrity, including SLSA provenance and image signing via Cosign/Sigstore.
Relevant certifications: CKS, CISSP, AWS Security Specialty, GCP, or OCI Security certifications. Responsibilities
Define and drive the DevSecOps roadmap, embedding security across the full SDLC, and architect security controls across infrastructure, pipelines, identity, and APIs aligned with CSA and OWASP CI/CD Top 10.
Own and enforce security standards across IaC using Terraform, Ansible, and Terrateam, with tfsec and Checkov scanning integrated into pipelines.
Harden Kubernetes clusters and OKE environments on OCI, and manage security posture across OCI and AWS.
Design and enforce security gates (SAST, SCA, DAST) across GitHub Actions, Jenkins, and ArgoCD pipelines, and maintain software supply chain integrity via SLSA provenance and image signing with Cosign/Sigstore.
Implement Just-In-Time access via HashiCorp Boundary with RBAC/ABAC, and manage identity protocols across OAuth2 and OIDC.
Own secrets and key lifecycle management using OCI Vault, OCI KMS, and HashiCorp Vault.
Harden API gateways (Kong, API6, Traefik), enforce Kubernetes NetworkPolicies at L3/L4, and manage WAF rules via Incapsula Imperva.
Lead security incident response from triage to post-mortem, support on-call rotations on a 24/7 high-throughput platform, and collaborate with SRE to embed security in reliability workflows, including runbooks and DR protocols.
Build security automation tools in Go and Python, and review application code security across Java, C#/ASP.NET, and JavaScript. Please include GDPR consent
I acknowledge, that by submitting the form I give consent for my personal data included in the application to be processed by DevsData LLC for the purposes of current and future recruitment processes in accordance with Art. 6 paragraph 1 letter a of the Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
Copy GDPR formula
Remote
Senior DevSecOps Engineer
7000 - 8000 USD
net/month - B2B
net/month - B2B
apply via email
7000 - 8000 USD
recruitment@devsdata.com
DevsData LLC needs the contact information and your personal data to be processed for the needs of a recruitment process. For information on how to withdraw your consent, as well as our privacy practices and commitment to protecting your privacy, check out our Privacy Policy.
Copy GDPR formula
Read about our Privacy Policy
Contact us
Any questions? E-mail me.
