DevSecOps Engineer

Job Overview
We are seeking a skilled DevSecOps Engineer to integrate robust security practices into the software development and operations lifecycle. The ideal candidate will be responsible for automating, monitoring, and improving security across CI/CD pipelines, cloud environments, and containerized applications — ensuring that security is a continuous and automated part of delivery.

Responsibilities

• Embed security controls into CI/CD workflows (GitHub Actions, Jenkins, GitLab CI, Azure DevOps).
• Implement SAST, DAST, and SCA tools (Checkmarx, SonarQube, OWASP ZAP, Snyk, Trivy).
• Automate code scanning, dependency checks, and container image security validation.
• Integrate vulnerability management and policy-as-code (Checkov, OPA, HashiCorp Sentinel).
• Secure workloads in AWS, Azure, or GCP environments.
• Configure and monitor cloud-native security services (AWS Security Hub, GuardDuty, Azure Defender).
• Manage secrets using AWS Secrets Manager, Azure Key Vault, or HashiCorp Vault.
• Implement encryption, IAM best practices, and identity-based access controls.
• Develop and manage secure infrastructure using Terraform, Ansible, or CloudFormation.
• Enforce compliance using IaC scanning tools to detect misconfigurations early.
• Implement Zero Trust principles in cloud and on-prem environments.
• Secure Docker and Kubernetes clusters (EKS, AKS, GKE).
• Implement image scanning, RBAC policies, and network segmentation.
• Deploy runtime threat protection using Falco, Aqua Security, or Prisma Cloud.
• Integrate security logs with SIEM tools (Splunk, Sentinel, ELK, QRadar).
• Automate incident detection and response using SOAR or custom playbooks (Python, PowerShell).
• Develop dashboards for vulnerability trends, compliance, and cloud security posture.
• Collaborate with DevOps, Cloud, and Security teams to enforce best practices.
• Contribute to security policy development, awareness, and audits (ISO 27001, NIST, SOC 2)

Required Skills & Tools

• CI/CD Tools: Jenkins, GitLab, GitHub Actions, Azure DevOps
• Security Tools: SonarQube, Checkmarx, OWASP ZAP, Snyk, Trivy, Anchore
• IaC: Terraform, Ansible, CloudFormation
• Cloud Platforms: AWS, Azure, or GCP
• Containerization: Docker, Kubernetes, Helm
• Programming/Scripting: Python, Bash, PowerShell
• Security Standards: NIST, CIS Benchmarks, ISO 27001, OWASP Top 10

Job Type: Full-time

Ability to commute/relocate:

• ıstanbul: Reliably commute or planning to relocate before starting work (Required)

Application Question(s):

• what is your monthly current salary with currency?
• What is your monthly expected salary with currency?
• what is your notice period?

Education:

• Bachelor's (Required)

Experience:

• DevSecOps: 3 years (Required)