Senior DevSecOps Engineer - CI/CD and Cloud Security

Expected, Containers, Groovy, Helm, Jenkins, Maven, NPM, Python, SAST, SonarQube, Sonatype IQ, Terraform

About the project, Krakow-based opportunity with hybrid work model., , As a Senior DevSecOps Engineer, you will be working for our client, a global leader in cloud security and software development. You will own and evolve their Jenkins Shared Library to power multi-language builds (Java/Maven, Node/NPM, Python, Helm, Terraform, containers), delivering fast, secure, and provenance-rich pipelines that enhance supply-chain integrity across teams. This role offers the chance to drive automation excellence and reinforce security in modern CI/CD environments, fostering continuous innovation and growth.

Your responsibilities, Design and maintain Groovy pipeline steps for build, test, package, scan, and deploy processes., Extend Python tooling to enhance SLSA provenance, SBOM generation, hash/digest accuracy, and security scan aggregation., Optimize pipeline performance through parallelization, caching, and dependency management., Ensure artifact integrity with correct SHA1/SHA256 mapping and reproducible inputs., Refactor legacy scripts to improve code quality and standardization., Document ci-config.yaml standards and best practices for teams., Mentor engineers on secure pipeline development and supply-chain security practices., Troubleshoot and proactively prevent pipeline incidents to ensure seamless integration.

At least 5 years of engineering experience, with 3+ years in CI/CD or DevSecOps., Strong expertise with Jenkins and Groovy shared libraries., Advanced Python automation skills (JSON/YAML processing, scripting)., Deep knowledge of Maven, NPM, Python packaging; exposure to Helm, Terraform, and container image metadata., Solid understanding of supply-chain security concepts (SLSA, CycloneDX SBOM, digests)., Experience with SonarQube, Sonatype IQ, and container/SAST scanning tools., Proven performance tuning skills — caching, parallel builds, dependency pruning., Awareness of compliance standards and best practices.

Optional, Experience with artifact signing/attestation tools like cosign or OCI., Familiarity with Terraform modules and Helm chart publishing patterns., Knowledge of GitOps or release automation processes., Cloud experience with GCP or AWS.

What we offer, Stable and long-term cooperation with very good conditions, Enhance your skills and develop your expertise in the financial industry, Work on the most strategic projects available in the market, Define your career roadmap and develop yourself in the best and fastest possible way by delivering strategic projects for different clients of ITDS over several years, Participate in Social Events, training, and work in an international environment, Access to attractive Medical Package, Access to Multisport Program, Access to Pluralsight, Flexible hours

Benefits, sharing the costs of sports activities, private medical care, flexible working time, fruits, integration events, corporate gym, saving & investment scheme, no dress code, coffee / tea, drinks, christmas gifts, birthday celebration, sharing the costs of a streaming platform subscription, access to +100 projects, access to Pluralsight

Recruitment stages, first online interview, second online interview

#GETREADY to meet with us!, ITDS Business Consultants is involved in many various, innovative and professional IT projects for international companies in the financial industry in Europe. We offer an environment for professional, ambitious, and driven people., , We would like to meet you. If you are interested please apply and attach your CV in English or Polish, including a statement that you agree to our processing and storing of your personal data.

ITDS’s Whistleblower Procedure, You can report violations in accordance with ITDS’s Whistleblower Procedure available here:

ITDS Polska Sp. z o.o., ITDS supports financial service providers to take the next steps., , We identify what’s possible, every day. Opportunities in the areas of technology, organization, and digitization., , We see where banks, insurers, payment companies, or fintech can go and how they can get there., , That’s why we want to stimulate you to ramp up your ambition. Forget what you perceive as restraints and step towards the new reality., , ITDS in Poland - Pure player in new Technologies & Financial Industry, +300 IT implementation professionals, +20 clients in the Banking, Insurance, Payment & Fintech Industry, , ITDS excels in digital strategy delivery and implementation of best-of-breed lending solutions. ITDS has delivered successful strategic projects throughout Europe since 1998. We combine the experience we’ve accumulated with in-depth knowledge of technologies, business processes, and EU legislation to unlock new business opportunities.

This is how we work,