This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description A DevSecOps Engineer is responsible for integrating security practices into the entire software development lifecycle, ensuring that applications, infrastructure, and operations are secure by design. This role blends development, operations, and security expertise to maintain high-availability systems while proactively managing security risks and compliance requirements. - Security Integration in CI/CD: Embed security checks, vulnerability scanning, and automated compliance tests into CI/CD pipelines. - Infrastructure Security: Implement secure cloud and on-premises infrastructure using best practices for access control, encryption, and network segmentation. - Container & Kubernetes Security: Manage and harden containerized environments, including image scanning, runtime protection, and pod security policies. - Monitoring & Incident Response: Use observability tools to monitor systems for security threats, respond to incidents, and implement continuous improvements. - Collaboration & Education: Work closely with developers, SREs, and QA teams to ensure security-first development practices, provide guidance on secure coding, and conduct threat modeling. - Compliance & Governance: Ensure systems and processes comply with standards like ISO27001, SOC 2, GDPR, NIST, and maintain audit readiness. Qualifications - Strong knowledge of cloud platforms (AWS, GCP, Azure) and their security services. - Proficiency in scripting/programming (Python, Bash, Go, TypeScript). - Experience with CI/CD tools (GitLab, Jenkins, CircleCI) and integrating security into pipelines. - Hands-on experience with Kubernetes, Docker, and container security tools (Trivy, Clair, Anchore). - Familiarity with infrastructure as code (Terraform, Pulumi) and securing IaC workflows. - Understanding of network security, identity and access management, secrets management (Vault, AWS Secrets Manager). - Knowledge of monitoring and logging tools (Prometheus, Grafana, OpenTelemetry) for security observability. Requirements - Experience in penetration testing, red teaming, or security audits. - Knowledge of zero-trust architectures and microservices security patterns. - Experience with security automation frameworks and policy-as-code tools. - Experience or strong interest in Web3 and crypto technologies, including blockchain-based data systems or decentralized applications. - Certifications such as CISSP, CISM, AWS Security Specialty, or GCP Professional Security Engineer. Benefits - Learning support - courses, English classes, and conferences (up to 100% reimbursement). - Unique loyalty program - receive corporate digital miners and earn passive income with no investment. - Team culture: retreats in international locations (for example, company apartments in Cyprus). - Memorable events with wow prizes - we celebrate big occasions in a big way. - “Employee of the Month” award - we recognize and reward our top performers. - Paid leave: up to 28 vacation days + 8 company holidays + 5 personal days per year. - New career tracks - real opportunities to grow into expert or top management roles. - Work-life fit - flexible hours and remote work. You don’t need to chase balance - here, work is a part of life, not the opposite. We aim to make work inspiring, not exhausting. For us, results matter most.

• Act as the primary SRE partner for the DBA team, bringing deep systems and reliability expertise to all managed database platforms. • Own the end-to-end observability stack for databases – define and implement metrics, logs, traces, dashboards, and actionable alerts for PostgreSQL, MongoDB, Redis, OpenSearch, YugabyteDB and related services. • Design, implement, and continuously improve monitoring and alerting specifically for database reliability (replication lag, connection saturation, query latency, storage and WAL usage, vacuum/bloat, backup health, etc.). • Lead and participate in on-call and incident response for database or system incidents • Build and maintain automation and self-service workflows for the DBA team using any Infrastructure and configuration management (Puppet/Ansible) – e.g. cluster provisioning, configuration rollout, user/role management, backup/restore orchestration, and failover procedures. • Develop and maintain runbooks, playbooks, and standard operating procedures for SRE aspects of database operations • Champion an automation-first, “no manual changes” culture for database and platform changes, and actively work to reduce toil through tooling and platform improvements. • Be a member of a weekly 24/7 on-call rotation • Strong collaboration skills as well as the ability to work independently

• Expanding the functionality of internal automation tools written in Bash and Python • Handling system configuration automation using SaltStack • Handling CI/CD mechanisms • Reacting to and investigating incidents and external support requests • Creating and expanding Terraform projects • Setting up monitoring and creating Grafana dashboards

• Develop and maintain cloud infrastructures and web applications focusing on FedRAMP standards • Develop, configure, and maintain CI/CD pipelines to automate build, test, and deployment processes • Monitor CI/CD pipeline performance, identify and resolve issues, and optimize pipelines • Work closely with engineering teams to design and shape the product deployment • Document CI/CD processes, pipeline configurations, and best practices