Devsecops Engineer (Remote)

Creating an inspiring place to thrive for the talented, we use their expertise and courage to introduce the technology of the future into your business. – This is the foundation of Mindbox and the goal of our business and technology journey. We operate and develop in four areas:

🤖 Autonomous Enterprise – automation of business processes using RPA, OCR, and AI.

🌐Business Managment Systems ERP – we implement, adapt, optimize, and maintain flexible, safe, and open ERP of production and distribution companies worldwide.

🤝Talent Network – we provide access to the best specialists.

☁️ Modern Architecture – we build integrated, sustainable, and open CI / CD environments based on containers enabling safe and more frequent delivery of proven changes in the application code.

We treat technology as a tool to achieve a goal. Thanks to our consultants’ reliability and proactive approach, initial projects usually become long-term cooperation. For over 16 years, it has provided various services to support clients in digital transformation.

About The Project

The team analyses the end to end process for DevSecOps delivery – including operational processes like patching, code scanning, and vulnerability management. Opportunities are then identified to streamline these end-to end processes and technologies – which could span a number of different teams across the bank.

The main aim of this role is to lead the engineering of re-usable DevSecOps automation pipeline/patterns.

Offer

• We are open to the employment form according to your preferences
• Work with experienced and engaged team, willing to learn, share knowledge and open for growth and new ideas
• Remote working system
• Mindbox is a dynamically growing IT company, but still not a large one – everybody can have a real impact on where we are going next
• We invest in developing skills and abilities of our employees
• We have attractive benefits and provide all the tools required for work f.e. computer
• Interpolska Health Care, Multisport, Warta Insurance, training platform (Sages)

Tasks

• Engaging with SME’s and engineers to identify opportunities to optimise specific parts of the CI/CD proces.
• Leading engineering of experiments to build and test optimisation patterns.
• Partnering with early adopters to test the role-out of patterns – providing technical support as needed.
• Documenting the design of patterns (for governance approval) and supporting technical user guides.
• Providing updates and contributing to delivery plans and roadmaps.
• Implementing automated metrics to capture pattern adoption statistics.

Requirements

• Extensive DevSecOps engineering experience – building CI/CD pipelines to automate the build, security scanning and deployment of code and infrastructure.
• Excellent communication and engagement skills, building relationships and partnering with key technology SME’s and DevSecOps engineers to delivery useful optimisations.
• Experience of writing and deploying code – either scripting or application code –
• Good understanding and hands on experience of many the key technologies involved:

• CI/CD tools such as Jenkins, Github, Github Actions, Nexus,
• Infrastructure as Code – primarily Terraform,
• Cyber code scanning tools such as Aquasec, Checkmarx, DAST, MAST and Sonarcube for Open Source,
• Identity and Access Management tools such as Active Directory and Hashicorp Vault,
• Certificate Management solutions such as Venafi.