Senior DevSecOps Engineer

Bucharest - Romania

Monthly Salary: Not Disclosed

Posted on: 4 hours ago

Vacancies: 1 Vacancy

Job Summary

The Cyber Security Engineer is responsible for embedding security controls testing and monitoring into CI/CD pipelines cloud infrastructure and application development processes. The role combines expertise in cybersecurity automation and modern DevOps practices to identify vulnerabilities early reduce risk and ensure compliance without slowing down development.

Qualifications :

Education & Certifications

Bachelors degree in Computer Science Cybersecurity Engineering or Telecommunications (or equivalent experience).
Security-related certifications and ITIL are a plus.

Experience & Skills

5 years of experience in Cyber Security roles
Strong understanding of cloud security (AWS Azure GCP)
Experience with CI/CD platforms (GitHub Actions GitLab CI Jenkins CircleCI)
Familiarity with container and Kubernetes security
Knowledge of application security practices and secure coding principles
Automation and scripting skills (Python Bash Go)
Understanding of infrastructure-as-code tools (Terraform CloudFormation)
Experience with monitoring and observability tools (Prometheus Datadog SIEM platforms)

Responsibilities

Integrate security into CI/CD pipelines by implementing automated security testing such as SAST DAST dependency scanning and container image scanning.
Secure cloud infrastructure and platforms using Infrastructure-as-Code (IaC) practices and automated configuration checks.
Collaborate with development and operations teams to design secure architectures and implement security best practices throughout the software lifecycle.
Develop and maintain security tooling and automation including scripts and integrations that enforce security policies during build and deployment.
Monitor systems and applications for threats leveraging security monitoring platforms SIEM tools and cloud-native security services.
Perform vulnerability assessments and remediation coordination across infrastructure applications and containers.
Ensure compliance with security standards and policies and help implement governance controls in automated workflows.
Respond to and investigate security incidents supporting incident response and root cause analysis.

Additional Information :

Discover some of the global benefits that empower our people to become the best version of themselves:

Finance: Competitive salary package share plan company performance bonuses value-based recognition awards referral bonus;
Career Development: Career coaching global career opportunities non-linear career paths internal development programmes for management and technical leadership;
Learning Opportunities: Complex projects rotations internal tech communities training certifications coaching online learning platforms subscriptions pass-it-on sessions workshops conferences;
Work-Life Balance: Hybrid work and flexible working hours employee assistance programme;
Health: Global internal wellbeing programme access to wellbeing apps;
Community: Global internal tech communities hobby clubs and interest groups inclusion and diversity programmes events and celebrations.

At Endava were committed to creating an open inclusive and respectful environment where everyone feels safe valued and empowered to be their best. We welcome applications from people of all backgrounds experiences and perspectivesbecause we know that inclusive teams help us deliver smarter more innovative solutions for our customers. Hiring decisions are based on merit skills qualifications and potential. If you need adjustments or support during the recruitment process please let us know.

Remote Work :

Employment Type :

Full-time

Qualifications :

Education & Certifications

Bachelors degree in Computer Science Cybersecurity Engineering or Telecommunications (or equivalent experience).
Security-related certifications and ITIL are a plus.

Experience & Skills

5 years of experience in Cyber Security roles
Strong understanding of cloud security (AWS Azure GCP)
Experience with CI/CD platforms (GitHub Actions GitLab CI Jenkins CircleCI)
Familiarity with container and Kubernetes security
Knowledge of application security practices and secure coding principles
Automation and scripting skills (Python Bash Go)
Understanding of infrastructure-as-code tools (Terraform CloudFormation)
Experience with monitoring and observability tools (Prometheus Datadog SIEM platforms)

Responsibilities

Integrate security into CI/CD pipelines by implementing automated security testing such as SAST DAST dependency scanning and container image scanning.
Secure cloud infrastructure and platforms using Infrastructure-as-Code (IaC) practices and automated configuration checks.
Collaborate with development and operations teams to design secure architectures and implement security best practices throughout the software lifecycle.
Develop and maintain security tooling and automation including scripts and integrations that enforce security policies during build and deployment.
Monitor systems and applications for threats leveraging security monitoring platforms SIEM tools and cloud-native security services.
Perform vulnerability assessments and remediation coordination across infrastructure applications and containers.
Ensure compliance with security standards and policies and help implement governance controls in automated workflows.
Respond to and investigate security incidents supporting incident response and root cause analysis.

Additional Information :

Discover some of the global benefits that empower our people to become the best version of themselves:

Finance: Competitive salary package share plan company performance bonuses value-based recognition awards referral bonus;
Career Development: Career coaching global career opportunities non-linear career paths internal development programmes for management and technical leadership;
Learning Opportunities: Complex projects rotations internal tech communities training certifications coaching online learning platforms subscriptions pass-it-on sessions workshops conferences;
Work-Life Balance: Hybrid work and flexible working hours employee assistance programme;
Health: Global internal wellbeing programme access to wellbeing apps;
Community: Global internal tech communities hobby clubs and interest groups inclusion and diversity programmes events and celebrations.

Remote Work :

Employment Type :

Full-time

Key Skills

APIs
C/C++
Computer Graphics
Go
React
Redux
Node.js
AWS
Library Services
Assembly
GraphQL
High Voltage

Apply Now

About Company

Endava

For over two decades, we have been harnessing technology to drive meaningful change. By combining world-class engineering, industry expertise and a people-centric mindset, we consult and partner with our customers to create technological solutions that drive?innovation and transfor ... View more

View Profile View Profile

AI AutoApply

Apply to 100+ jobs with one click