דרושים » מחשבים ורשתות » דרוש /ה DevOps Engineer (AWS) לחברת פינטק ברמת גן (קו רכבת סבידור)!

We are seeking a skilled and motivated DevSecOps Engineer to integrate security practices into our DevOps pipeline, ensuring secure software development, deployment, and infrastructure.
You will automate and own security tooling, Integrate SAST, DAST, container/IaC scans, and secret detection into our CI/CD, continuously improving the stack. Harden application security, embed secure-coding best practices, OWASP Top-10 defenses, and threat modeling throughout the SDLC. Raise cloud security standards, keep our cloud environments aligned with best practice to mitigate any risk.
Key Responsibilities:
Secure CI/CD Pipelines: Integrate security into continuous integration and delivery workflows (CI/CD).
Automation & Tooling: Implement and manage tools for static and dynamic code analysis (SAST, DAST), software composition analysis (SCA), and secrets management.
Cloud Security: Ensure infrastructure-as-code (IaC) and cloud deployments (e.g., AWS, Azure, GCP) are secure and compliant.
Monitoring & Incident Response: Set up security monitoring and logging; support incident response and forensic analysis.
Policy & Compliance: Work with compliance teams to enforce standards such as ISO 27001, SOC 2, NIST, or HIPAA, depending on your environment.
Collaboration: Serve as a bridge between development, operations, and security to ensure alignment and shared responsibility for security.

We are looking for a motivated and results-driven DevSecOps Engineer to take ownership of securing our platform, drive improvements across our CI/CD pipelines and cloud infrastructure, and strengthen our security posture while enabling fast, safe delivery for our customers.

You will work closely with R&D teams, embedding security into code, pipelines, and infrastructure while keeping engineering velocity high. You will take on high-scale security challenges, implement automations and improvements in our security tooling, and drive solutions that keep our platform safe and reliable.

As the DevSecOps Engineer, you will:

Be hands-on, end-to-end, securing applications and cloud infrastructure
Implement and operate application security controls across the SDLC
Build, integrate, and maintain security automation inside CI/CD pipelines
Actively review code, IaC, and architecture from a security perspective
Perform threat modeling and guide engineers toward secure design decisions
Identify, triage, and remediate application and infrastructure vulnerabilities
Own IAM architecture, permissions, access policies, and secrets management
Execute and manage penetration testing, vulnerability scans, and bug bounty findings
Be hands-on in implementing SOC controls and evidence collection
Support internal and external audits with strong technical ownership
Improve security monitoring, alerting, and incident response capabilities