Lead DevSecOps Engineer

IF YOU ARE

• Having 3+ years of full-time dedicated experience leading Cloud Security focused roles on delivering security on cloud native, distributed architectural solutions in complex environments
• Proficient with predominant cloud providers (Azure/AWS)
• Knowledgeable of virtualization, containers, service-mesh, enterprise service business and have understanding of key differences between most popular cloud provider solutions and cloud orchestration tools (e.g. AWS, Azure, GCP, VMware, Pivotal Cloud Foundry, Kubernetes, Docker, etc.)
• Experienced with assessment, development, implementation, optimization, troubleshooting and documentation of a comprehensive and broad set of security technologies and processes (SSDLC data protection, cryptography, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environments
• Skilled in identifying and driving remediation of public and hybrid cloud risks
• Seasoned in designing, implementing and delivering security for cloud native, distributed computing and architectural solutions with a principle of “Secure by Design”
• Practiced in performing Threat Modeling, generating security architectural requirements to software development and product teams
• Aware of Industry trends in cloud technologies for public, private and hybrid cloud deployments
• Holding one or more technical security certifications: (e.g. CCSP — Certified Cloud Security Professional, CISSP — Certified Information Systems Security Professional, CSSLP — Certified Secure Software Lifecycle Professional)
• Adept at building positive working relationships with essential stakeholders and proactively take initiative
• Fluent in English (upper-intermediate level) and comfortable in a multicultural environment
• Exceptional in both verbal and written communication, capable of leading and influencing virtual teams

WE ARE

SoftServe is a global digital solutions company with headquarters in Austin, Texas, founded in 1993. Our associates work on 2,000+ projects with clients in the USA, Europe, and LATAM.

Our Critical Services Center of Excellence (CoE) is a group of passionate technologists specializing in software architecture, startups, and enterprise platforms. As part of SoftServe’s Cybersecurity Practice Team, we help clients build trust in their systems by delivering reliable, tailored security solutions. We don’t just identify gaps – we guide organizations through every step of the improvement journey, making sure they’re equipped to handle today’s threats and tomorrow’s challenges.

With deep expertise across a wide range of technologies, we adapt our approach to meet each client’s unique needs. Our team covers a broad spectrum of cybersecurity domains: Cost Optimization & Migration Efficiency, Infrastructure and Application Modernization, Regulatory Compliance & Governance Excellence, Security Posture Strengthening, Data Protection and Privacy Assurance, and Secure Use of AI.

We are a diverse, distributed team with members based in Poland, Ukraine, Spain, and other European countries, collaborating across borders to deliver world-class cybersecurity solutions.

TOGETHER WE WILL

• Work with the world-leading companies and people on complex, cutting-edge projects with global reach, focusing on infrastructure, data, and AI security across various cloud and commercial technologies
• Have a variety of projects with different types of needs and requirements, partnering with technical teams across the US and EMEA, all while working standard European hours
• Work towards giving you a highly independent position with total ownership and accountability, but also have support when needed
• Get a great deal of learning and development opportunities along our structured career path
• Develop your cybersecurity skills, leadership, communication, and negotiation skills
• Have access to strong educational and mentorship programs

SoftServe is an equal opportunity employer. Qualified applicants will receive consideration regardless of race, color, ancestry, ethnicity, national origin, religion, sex, sexual orientation, gender identity or expression, age, citizenship, disability, health condition, marital or family status, veteran status, or any other characteristic protected by applicable law.

,[Develop and implement security measures throughout the software development lifecycle, including requirements gathering, design, development, testing, and deployment phases, Play a key technical role in shaping end-to-end security solutions, from early pre-sales discussions to full delivery, Work closely with clients to understand their needs, design secure architectures, build prototypes, and support implementation to ensure everything aligns with the agreed roadmap, Implement and manage scalable IAM guardrails for cloud (Azure/AWS/GCP), Contribute to the technical roadmap and execute on projects for data protection, including key management, encryption, and tokenization, Develop and implement secure configurations for containerized (Kubernetes, EKS) and IaC (Terraform) workflows, Stay up to date with the latest security threats, vulnerabilities, and industry trends, and provide recommendations on security enhancements and risk mitigation strategies, Collaborate with cross-functional teams to educate and promote security awareness, conducting training sessions and workshops on secure coding practices and security-related topics] Requirements: Cloud security, Security, Cloud, Azure, Virtualization, Enterprise service bus, AWS, GCP, VMware, Kubernetes, Docker, SSDLC, Cryptography, IAM, Network Security, SaaS, IaaS, PaaS, Cloud Native, Distributed computing, Principle, Certified Cloud Security Professional, CISSP, Certified Information Systems Security Professional Additionally: Sport subscription, Training budget, Private healthcare, International projects, Flat structure, Small teams, Free coffee, Canteen, Bike parking, Free snacks, Free parking, In-house trainings, Modern office, No dress code.