ToYou | تويو

Senior DevSecOps Engineer

ToYou | تويو

full-time

Posted on:

Location Type: Hybrid

Location: Limassol • 🇨🇾 Cyprus

Visit company website
AI Apply
Apply

Job Level

Senior

Tech Stack

AWSCloudGoJavaKubernetesPythonTerraform

About the role

  • Refactor and document employee authentication and authorization systems (SSO, RBAC, MFA).
  • Configure and maintain GitLab security tools and scanners (SAST, DAST, SCA).
  • Integrate and automate AppSec vulnerability scanners across environments.
  • Design and maintain secure inter-service communication and authorization using Istio and related security extensions.
  • Tune and monitor AWS cloud infrastructure in line with CIS and industry best practices.
  • Establish and promote DevSecOps processes, standards, and automation across the company.
  • Conduct security awareness sessions and hands-on workshops for developers and DevOps engineers.
  • Continuously improve the overall security posture through proactive analysis and collaboration with engineering teams.
  • Be responsible for the security tools and services allocated to you.
  • Investigate and resolve complex and high-priority security incidents.
  • Create and maintain playbooks, policies, and custom rulesets to strengthen our security maturity.
  • Contribute to the development of security standards and implement controls to enforce them.
  • Help design and improve strategies to respond to and recover from security incidents and breaches.

Requirements

  • Strong understanding of CI/CD pipelines (GitLab CI preferred).
  • Ability to understand and work with modern development stacks (Java, Go, Python).
  • Experience with AWS security services and Infrastructure as Code (Terraform).
  • Good knowledge of Kubernetes and Helm, including secure deployment practices.
  • Familiarity with container security and service mesh technologies (Istio, Envoy).
  • Solid understanding of application and infrastructure security principles.
  • Proactive mindset, strong communication skills, and passion for automation.
  • Nice to have : Experience in building or leading DevSecOps transformation initiatives.
  • Scripting skills (Python, Bash).
  • Knowledge of SOC 2, ISO 27001, or CIS compliance frameworks.
Benefits
  • Competitive Salary
  • 20 Vacation Days plus Public Holidays
  • Remote work from your preferred location
  • Discounted Language Courses
  • International Team

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
SSORBACMFAGitLabSASTDASTSCAAWSTerraformKubernetes
Soft skills
proactive mindsetstrong communication skillspassion for automation
Certifications
SOC 2ISO 27001CIS