Senior DevSecOps Engineer

Posted 80ds ago

Employment Information

Industry

Education

Salary

Experience

Job Type

Location

Job expired or something wrong with this job?

Senior DevSecOps Engineer for Veeam, integrating security controls across SDLC and managing security tooling in CI/CD.

Integrate and manage security tooling in CI/CD: SAST, SCA, secrets scanning, and container image scanning. Design and maintain automated workflows and gates across pull requests, merges, and releases
Build and optimize security pipelines and reusable templates in Azure DevOps, Jenkins, GitLab CI/CD, and TeamCity. Implement risk-based thresholds aligned with product teams and tune for signal over noise
Collaborate with Application Security and Development to triage findings, provide actionable fix guidance, track remediation, and prevent recurrence through guardrails and standards
Configure and maintain repository policies and curation in package repositories for NuGet, npm, and similar
Monitor and analyze scanning results across environments. Create concise dashboards and metrics to show coverage, trends, and risk reduction, and refine rules to reduce false positives
Enhance CI/CD pipelines with secure-by-default configurations. Improve developer experience through documentation, reusable patterns and enablement sessions
Support audit preparation, evidence collection, and compliance activities tied to the software delivery process

Experience in DevOps, SRE, or Infrastructure Engineering with hands-on CI/CD integration
Strong understanding of SSDLC and DevSecOps, including risk-based gates and remediation workflows
Hands-on experience with CI/CD platforms (Azure DevOps, Jenkins, GitLab CI/CD, TeamCity) and pipeline-as-code (YAML)
Experience integrating and tuning security tools (SAST, SCA); familiarity with secrets and container image scanning
Knowledge of artifact repositories, dependency management, and vulnerability/license scanning with policy configuration
Solid Linux and Windows skills: CLI usage, log analysis, basic networking, and build/container troubleshooting
Experience with automation and configuration management (Ansible, Helm) and containers/orchestration (Docker, Kubernetes)
Exposure to Infrastructure as Code (Terraform, CloudFormation, Bicep) and embedding security checks in IaC pipelines
Basic understanding of application and network security concepts in automated pipelines
Familiarity with monitoring/observability tools for troubleshooting CI/CD and security jobs

26 paid days off annually, plus 4 extra global VeeaMe Days for self-care and 24 paid volunteer hours annually through Veeam Cares
Paid parental, maternity, and paternity leave
Fully covered family medical plan, dental, rehab, and vaccinations
Life, critical illness, and disability insurance
Employer pension contribution via PPK
Monthly Edenred allowance of 450 PLN for meals
MultiSport card fully covered by Veeam, giving access to sports facilities nationwide
Up to 12 free therapy sessions annually, plus legal and financial advice
Opportunities to learn and grow through on-demand libraries (LinkedIn Learning, O’Reilly), mentoring, workshops and learning events like our annual Global Day of Learning