DevSecOps Specialist (Full-Stack Developer)

What you'll do

• Design, maintain, and secure CI/CD pipelines for application build, test, artifact publishing, and deployment workflows using Jenkins, GitHub Actions, and related tooling.

• Manage software delivery security controls including certificate lifecycle management, TLS/SSL renewals, secrets rotation, and secure credential handling across environments.

• Implement DevSecOps practices including vulnerability scanning, deployment security gates, compliance checks, and secure release workflows.

• Build and support backend automation services and internal APIs using Python, FastAPI, PostgreSQL, Redis, and RabbitMQ.

• Support Docker-based application deployments, Linux VM administration, and secure runtime configuration management across development, QA, and production environments.

• Integrate and maintain authentication and authorization workflows using JWT, OAuth2/OIDC, Microsoft Entra ID (Azure AD), RBAC, and least-privilege access principles.

• Monitor platform health, investigate incidents, triage production issues, and maintain operational documentation and runbooks.

What you'll need to get the job done

• 5+ years of professional experience in DevOps, DevSecOps, Platform Engineering, Site Reliability Engineering, or backend infrastructure development.
• Strong hands-on experience with CI/CD pipeline development and maintenance using Jenkins, GitHub Actions, Azure DevOps, or similar tooling.
• Professional experience managing certificates, secrets, authentication systems, or operational security controls in production environments.
• Strong Python development skills with experience building automation tooling, backend services, or operational integrations using FastAPI or similar frameworks.
• Experience with Docker, Linux administration, shell scripting, and production deployment troubleshooting.
• Working knowledge of PostgreSQL, Redis, RabbitMQ, REST APIs, and secure service-to-service communication patterns.

What will make us REALLY love you

• Experience with PKI infrastructure, certificate automation tooling, HashiCorp Vault, Azure Key Vault, AWS Certificate Manager, or secrets management platforms.

• Experience implementing software supply chain security practices including artifact signing, SBOM generation, dependency governance, or container security scanning.

• Familiarity with Kubernetes security, policy enforcement, ingress security, or container runtime hardening.

• Experience building operational dashboards, SLA monitoring tools, or deployment observability platforms.

• Experience with AI-assisted development, security automation, or intelligent operational tooling.