DevSecOps Engineer

What will you do?

• In this role, you’ll collaborate closely with various stakeholders, including Security Engineers, Engineering Managers, and developers to create effective security designs and protocols while securing microservices and monitoring threats. That’s why this position requires not just strong technical skills, but also great communication abilities, a knack for mentoring, and knowledge-sharing.
• You’ll be responsible for building a world-class, scalable, and resilient security infrastructure that keeps the Hippo platform safe and sound.
• You’ll boost developer productivity by integrating security tools and processes into our CI/CD pipelines, as well as monitoring systems and cloud environments to ensure everything runs smoothly.
• You’ll be using Golang, Python, and other scripting languages like Bash on a daily basis to automate security operations, build secure APIs, and develop serverless security functions.
• You’ll get to work with various cloud providers, databases, open-source tools like Terraform, Kubernetes, and Docker, and a range of security tools like CSPM, DSPM, WAF, ZTN, DAST, SAST, Vault, and more, giving you a chance to explore and enhance our security setup.
• You’ll be the advocate for a security-first mindset within the DevOps team and across the organization, promoting awareness and best practices related to infrastructure security.
• You'll be able to put your mark on the project, and you will take ownership and responsibility for what you do. This isn’t a “just keep the lights on” role — you’ll shape how things are done from the ground up.
• You’ll work closely with other Senior DevOps Engineers, sharing responsibility for on-call rotations and keeping the platform healthy.

We might be a match if you…

• Have 3+ years of hands-on DevOps experience and security is an area that you understand, have skills in and are passionate about.
• Are skilled in Golang or Python.
• Have hands-on experience with tools like AWS, Kubernetes, Terraform, Docker, and modern CI/CD systems.
• Understand AWS VPC or GCP networking, including key concepts like network separation, security groups, and ACLs.
• Have worked with security frameworks such as OWASP, NIST, or SANS and know your way around Intrusion Detection and Prevention Systems (IDPS).
• Have experience securing CDN configurations and can integrate them into a broader security strategy.
• Can recognize and defend against common CDN attack vectors like DDoS attacks, cache poisoning, and content hijacking.
• Know about authentication protocols like SAML, OIDC, OAuth or similar.
• Are comfortable working with security logging and metrics systems to keep things running smoothly.
• Enjoy working in a small, focused, and highly efficient team.
• Have a great command of English (written & spoken).
• Are available in the afternoons – you'll join a Polish-American team, so you can expect afternoon meetings. Rest assured, we prioritize work-life fit, respect everyone's private lives, and don’t work at night but we still must ensure that communication between the time zones is effective.

You will get extra points for:
• Relevant Certifications (CCSP, CSSLP, AWS certifications, etc.)
• Experience with SOX 404(b), SOC2.

Recruitment process:

• Send us your CV – it's the best way for us to get to know you.
• Meet Gabi, one of our Recruiters.
• Join Paweł, our Sr. DevOps Engineer, for a 60-minute technical interview.
• Have a conversation with Eli (Sr. Manager, DevOps & SRE) and Shaun (Sr. Manager, Cybersecurity).
• Catch-up with Tomek (Security & Technology Director).
• Meet on the final stage with Marcin and Alicja.
• and... welcome aboard! 👋