[CMI] DevSecOps

Project – the aim you’ll have

Join our Cloud & Security practice to drive security improvements across existing environments on GCP & AWS. You’ll collaborate with platform, SRE, and product teams to harden services, embed security in delivery, and reduce risk through automation. This is a continuous- improvement role focused on incremental changes and reliability, not greenfield builds. Work remote from the EU or on-site in our PL hubs.

Position – how you’ll contribute

• Partner with platform, SRE, and application Teams to identify and deliver security improvements in existing GCP & AWS estates.
• Implement guardrails and secure defaults(IAM least privilege, org policies/SCPs, encryption, secrets) as reusable patterns.
• Embed scanning and supply-chain controls in CI/CD (SAST/DAST, image & secret scanning,SBOMs).
• Strengthen container and Kubernetes security (GKE/EKS) with admission, runtime, and network policies.
• Build actionable logging, monitoring, and alerting (Cloud Logging/CloudWatch, Prometheus/Grafana, ELK/OpenSearch).
• Design and deliver changes as Terraform (modules, testing, pipelines, policy-as-code).
• Contribute to incident response playbooks and post-incident improvements.

Expectations – the experience you need

• 4+ years in DevSecOps/Cloud Security/Platform roles across GCP & AWS.
• Practical Terraform expertise (HCL, modules, state, testing) and an “everything as code” mindset.
• Strong knowledge of IAM, network security, encryption, secrets, and logging/monitoring.
• Experience securing containers and Kubernetes (GKE/EKS), including admission & network policies.
• Hands-on with vulnerability, dependency, and secret scanning; familiarity with SBOMs.
• Ability to collaborate across teams and communicate clearly in English (B2+).
• Based in the EU (remote) or open to work from our PL offices; readiness for standard background checks if required.

Additional skills – the edge you have

• Google Cloud certifications – Professional Cloud Security Engineer; DevOps Engineer; Cloud Architect.
• AWS certifications – Security (Specialty), Solutions Architect, DevOps Engineer.
• Policy-as-code (OPA/Gatekeeper/Kyverno), secret management (Vault), image signing/provenance (sigstore/cosign).
• Experience with GitOps, cost-aware security, and platform enablement.

Our offer – professional development, personal growth

• Flexible employment and remote work
• International projects with leading global clients
• Non-corporate atmosphere
• Language classes
• Internal & external training
• Private healthcare and insurance
• Multisport card
• Well-being initiatives

Position at: Software Mind Poland

Software Mind develops solutions that make an impact for companies around the globe. Tech giants & unicorns, transformative projects, emerging technologies and limitless opportunities – these are a few words that describe an average day for us. Building cross-functional engineering teams that take ownership and crave more means we’re always on the lookout for talented people who bring passion and creativity to every project. Our culture embraces openness, acts with respect, shows grit & guts and combines employment with enjoyment.