Nordsec2mo ago

DevSecOps Engineer | Junior-Mid

Vilnius · VilniusFull Timeentry

CybersecurityDevSecOps Engineer

0 views0 saves0 applied

Apply Now

Quick Summary

Overview

At Nord Security, we’re creating a safer cyber future. We help people and businesses take back control of their online security, privacy, and data. From VPNs to password managers,

Technical Tools

CybersecurityDevSecOps Engineer

At Nord Security, we’re creating a safer cyber future.

We help people and businesses take back control of their online security, privacy, and data. From VPNs to password managers, threat intelligence to eSIMs for travel—our teams turn complex problems into solutions trusted by millions worldwide.

Life is online. In this role, you’ll help people own it.

Design, build, and maintain CI/CD pipelines. Integrate SAST, DAST, SCA, CS, secrets, and IaC scanning. Tune signal-to-noise ratio, set quality gates, and document workflows/processes;

Build, test, and maintain infrastructure and tools that allow for secure, agile software development and automated releases;

Develop scripts and security automation tools to enhance security testing processes;

Implement/automate container and cloud infrastructure security;

Strengthen software supply chain security: generate and manage SBOMs, improve dependency hygiene, enforce artifact signing and provenance, and harden pipeline integrity;

Lead vulnerability management workflows from scanner intake and prioritization through remediation tracking and metrics with partner teams;

Contribute to secure design reviews, threat modelling, incident response, and post-incident improvements;

Mentor other engineers, define our technical security culture, and help build a security team presence across our product range;

At least two years of professional experience across DevOps, cloud, or application security, with hands-on ownership of CI/CD and security automation;

Proficiency with at least one CI platform (e.g., GitHub Actions, GitLab CI), artifact registries;

Practical experience integrating and tuning SAST/DAST/SCA/secrets/IaC scanning and interpreting results to drive fixes;

Container and Kubernetes security fundamentals (image hardening, scanning, RBAC, policies, basic runtime detection);

AWS Cloud security experience: implementing access controls, logging/monitoring, and other security controls;

Scripting for automation (Python/Bash) and infrastructure-as-code (Terraform/Terragrunt);

Hands-on experience with Linux, Linux/Unix administration;

Experience working with Agile Development Practices;

Ability to build and maintain relationships and influence key stakeholders across the business;

Sense of ownership with strong problem-solving and investigation skills.

Helm

Docker

Docker Compose