Senior DevSecOps Engineer
7 dni temu
Cloudinary is looking for a Senior SecOps Engineer to be our eyes and ears on security—end to end.
You'll be embedded in the DevOps team and partner with our existing SecOps engineer to secure massively scalable, global production systems that power tens of thousands of websites and apps, while also tackling organizational security across identity, endpoints, SaaS, and risk. This is a hands‑on role with broad ownership and real impact across R&D, Production, and the business.
What You'll Do
- Detect, protect, and respond (hands‑on)
- Own day‑to‑day security operations for cloud and Kubernetes workloads (threat detection, alert triage, incident response, forensics, and post‑incident learning)
- Build and tune detections and automations (SOAR/runbooks, detection‑as‑code, Sigma/queries) to reduce MTTA/MTTR and eliminate noisy alerts
- Secure our delivery pipelines & runtime
- Harden CI/CD and software supply chain (secrets, SBOMs, artifact signing, SLSA/Cosign), and drive "secure by default" patterns in build/deploy
- Lead cloud/K8s/serverless hardening (IaC reviews, policy‑as‑code, admission controls, least privilege, network segmentation)
- Raise the bar across the organization (beyond prod)
- Partner with IT/SRE to evolve identity & access (SSO/MFA/JIT/JEA), endpoint/EDR posture, email & SaaS security, and third‑party/vendor risk
- Run vuln management end‑to‑end: scanning, prioritization, remediation SLAs, and executive reporting
- Contribute to security governance (policies, standards, tabletop exercises, BCP/DR inputs) and support compliance efforts (e.g., SOC 2/ISO 27001)
- Influence, automate, and measure
- Build security tooling and integrations (preferably Python or Go) that engineers love to use
- Define metrics/KPIs (coverage, drift, exposure, response times) and regularly communicate risk & progress to engineering and leadership
- Mentor engineers on secure design and champion a positive, enablement‑first security culture
What You'll Bring
- 5+ years in Security Operations/Cloud Security/Blue Team roles, with deep, hands‑on experience in AWS (IAM/GuardDuty/CloudTrail/CloudWatch) and Kubernetes/containers
- Strong incident response skills across detection, investigation, containment, and recovery especially in complex cloud-native environments
- Proficiency building security automations and tools in Python or Go; experience with SOAR and API‑driven workflows
- Practical expertise with SIEM/log analytics (e.g., ELK/OpenSearch, Splunk), EDR, CSPM/CNAPP, and secrets management (e.g., Vault)
- Solid grasp of CI/CD security, supply‑chain risks (SAST/DAST/IAST, dependency scanning, artifact signing), and IaC (Terraform) security reviews
- Networking & Linux fundamentals; proven ability to partner with DevOps/SRE/R&D and to communicate risk clearly to non‑security stakeholders
- Willingness to participate in a shared on‑call rotation for security incidents
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
-
Senior Engineer
1 tydzień temu
Kraków, Lesser Poland Senior Engineer VGW Pełny etat 60 000 zł - 110 012 zł rocznieSenior EngineerVGW is an interactive entertainment company, harnessing technology and creativity to deliver world-class, free-to-play online social games. We have an exciting opportunity to join our Engineering team in Poland and are currently looking for a Senior Engineer to join the team. As a Senior Engineer, you will focus on developing the back end of...
-
HSBCJP00056223 DevSecOps Engineer
1 tydzień temu
Kraków, Lesser Poland Antalpl Pełny etat 10 560 zł - 11 520 zł rocznieSenior DevSecOps / CI/CD EngineerContract type: B2B / ContractingWork model: Hybrid – 2 days per week on-site (Kraków)Industry: Banking / FinTechRate: 200–220 PLN/h (B2B)Role OverviewWe are looking for a highly experienced Senior DevSecOps / CI/CD Engineer to join a platform engineering team supporting a major banking client. The role focuses on...
-
DevSecOps Engineer
5 dni temu
Kraków, Lesser Poland Cloudinary Pełny etat 80 000 zł - 120 000 zł rocznieCloudinary is looking for a Senior DevSecOps Engineer to be our eyes and ears on security—end to end. You'll be embedded in the DevOps team and partner with our existing DevSecOps engineer to secure massively scalable, global production systems that power tens of thousands of websites and apps, while also tackling organizational security across identity,...
-
Senior DevSecOps Engineer
1 tydzień temu
Kraków, Lesser Poland FLYR Pełny etat 60 000 zł - 120 000 zł rocznieOur VisionWe believe in a world where travel companies can innovate freely, growing and accelerating their business, while delivering the experience travelers want and the change the industry needs.FLYR is a technology company that unlocks freedom to innovate for the travel industry – eliminating legacy constraints to enable real-time decision making and...
-
InfoSec (DevSecOps) Engineer
1 tydzień temu
Kraków, Lesser Poland LoopMe Pełny etat 60 000 zł - 120 000 zł rocznieWe are currently seeking an experienced InfoSec Mid-Level Specialist to enhance our security posture and ensure our systems and data's confidentiality, integrity, and availability. The ideal candidate will have a strong background in information security, familiarity with cloud environments like GCP, and experience securing modern data processing...
-
InfoSec (DevSecOps) Engineer
7 dni temu
Kraków, Lesser Poland LoopMe Pełny etat 80 640 USD - 112 800 USD rocznieWe are currently seeking an experienced InfoSec Mid-Level Specialist to enhance our security posture and ensure our systems and data's confidentiality, integrity, and availability. The ideal candidate will have a strong background in information security, familiarity with cloud environments like GCP, and experience securing modern data processing...
-
Senior DevSecOps Engineer
7 dni temu
Kraków, Lesser Poland Cloudinary Pełny etatCloudinary is looking for a Senior SecOps Engineer to be our eyes and ears on security—end to end.You'll be embedded in the DevOps team and partner with our existing SecOps engineer to secure massively scalable, global production systems that power tens of thousands of websites and apps, while also tackling organizational security across identity,...
-
Senior DevSecOps Engineer
7 dni temu
Kraków, Lesser Poland Cloudinary Pełny etat 120 000 zł - 180 000 zł rocznieCloudinary is looking for a Senior SecOps Engineer to be our eyes and ears on security—end to end. You'll be embedded in the DevOps team and partner with our existing SecOps engineer to secure massively scalable, global production systems that power tens of thousands of websites and apps, while also tackling organizational security across identity,...
-
DevSecOps Engineer
1 tydzień temu
Kraków, Lesser Poland Euroclear Pełny etat 60 000 € - 80 000 € rocznie*JOB DESCRIPTIONAbout the TribeTheContinuous Integration Tribeis at the heart of our software delivery ecosystem. Our mission is tomaintain, support, and evolve the CI/CD platforms*that empower thousands of developers across the organization. We ensure that code flows securely and efficiently from development to production, enabling innovation at scale.*What...
-
DevSecOps Engineer
5 dni temu
Kraków, Lesser Poland Euroclear Pełny etat 50 000 € - 120 000 € rocznie*JOB DESCRIPTIONAbout the TribeTheContinuous Integration Tribeis at the heart of our software delivery ecosystem. Our mission is tomaintain, support, and evolve the CI/CD platforms*that empower thousands of developers across the organization. We ensure that code flows securely and efficiently from development to production, enabling innovation at scale.*What...
