[CMI] DevSecOps

Project the aim youll have

Join our Cloud & Security practice to drive security improvements across existing environments on GCP & AWS. Youll collaborate with platform SRE and product teams to harden services embed security in delivery and reduce risk through automation. This is a continuous- improvement role focused on incremental changes and reliability not greenfield builds. Work remote from the EU or on-site in our PL hubs.

Position how youll contribute

• Partner with platform SRE and application Teams to identify and deliver security improvements in existing GCP & AWS estates.
• Implement guardrails and secure defaults(IAM least privilege org policies/SCPs encryption secrets) as reusable patterns.
• Embed scanning and supply-chain controls in CI/CD (SAST/DAST image & secret scanningSBOMs).
• Strengthen container and Kubernetes security (GKE/EKS) with admission runtime and network policies.
• Build actionable logging monitoring and alerting (Cloud Logging/CloudWatch Prometheus/Grafana ELK/OpenSearch).
• Design and deliver changes as Terraform (modules testing pipelines policy-as-code).
• Contribute to incident response playbooks and post-incident improvements.

Qualifications :

Expectations the experience you need

• 4 years in DevSecOps/Cloud Security/Platform roles across GCP & AWS.
• Practical Terraform expertise (HCL modules state testing) and an everything as code mindset.
• Strong knowledge of IAM network security encryption secrets and logging/monitoring.
• Experience securing containers and Kubernetes (GKE/EKS) including admission & network policies.
• Hands-on with vulnerability dependency and secret scanning; familiarity with SBOMs.
• Ability to collaborate across teams and communicate clearly in English (B2).
• Based in the EU (remote) or open to work from our PL offices; readiness for standard background checks if required.

Additional skills the edge you have

• Google Cloud certifications Professional Cloud Security Engineer; DevOps Engineer; Cloud Architect.
• AWS certifications Security (Specialty) Solutions Architect DevOps Engineer.
• Policy-as-code (OPA/Gatekeeper/Kyverno) secret management (Vault) image signing/provenance (sigstore/cosign).
• Experience with GitOps cost-aware security and platform enablement.

Additional Information :

Our offer professional development personal growth  

• Flexible employment and remote work  
• International projects with leading global clients 
• Non-corporate atmosphere 
• Language classes 
• Internal & external training 
• Private healthcare and insurance  
• Multisport card 
• Well-being initiatives 

Position at: Software Mind Poland

Remote Work :

Yes

Employment Type :

Full-time