DevSecOps Engineer

Ajax Systems is an international technology company, the largest developer and manufacturer of security systems in Europe.

The startup, created in 2011 in Ukraine, scaled into an international product company. Ajax security systems protect more than 2.5 million users in 169 countries. The company works with 150,000 installers in key markets.

Ajax Systems has a central office, an R&D department, and two full-cycle productions in Ukraine; the representative offices in the UAE (Dubai), Great Britain, Italy, Spain, and teams in many other regions; and a logistics hub in Poland.

The company has more than 3,000 employees, including 500 development engineers and 1,200 production workers.

Ajax products are a whole ecosystem of 135 devices, mobile and desktop apps, and server infrastructure.

The product line includes control panels, motion detectors, opening detectors, flood prevention, fire detectors, street and home sirens, alarm buttons with the appliances control function, smart sockets, and relays.

Our infrastructure is a part of the product that is invisible to the end user, but critical to the life of the entire system. The safety of our users and their property depends on our uptime. We are constantly developing our cloud solutions and this requires automating our infrastructure, testing and improving its fault tolerance. For this purpose we are looking for Senior DevSecOps Engineer.

Requirements:

• 5+ years of experience with a strong interest in security or exposure to DevSecOps principles.
• 3+ years of experience with AWS common stack: VPC, EC2, S3, RDS, Elasticache, Route53, Lambda etc.
• 3+ years of experience with AWS security stack: CloudTrail, IAM, KMS, WAF, GuardDuty, Inspector, Macie etc.
• 3+ years of experience with managing Linux-based systems, TCP/IP networking.
• 3+ years of experience with IaC and config management tools such as Terraform, Terragrunt, Ansible.
• Experience with git, Docker, Github Actions, Jenkins etc.
• Interest in security best practices and a willingness to grow skills in securing DevOps processes.

Desirable:

• Experience in a DevSecOps role or a similar position.
• Understanding of regulatory requirements and industry standards(SOC2, ISO27001, PCI DSS etc).
• Certifications related to cloud security (e.g., AWS Security Specialty)
• Kubernetes (AWS EKS) + Helm.
• Message brokers: NATS, Kafka.
• Databases: MongoDB.
• Hashicorp tools: Vault, Packer.
• Monitoring/Alerting: Datadog, OpsGenie.

Responsibilities:

• Security-focused DevOps Practices: Apply secure configurations and best practices within the DevOps environment, aiming to make security a natural part of the development and deployment process.
• Vulnerability Awareness: Help identify and address vulnerabilities in software and infrastructure components, working collaboratively to mitigate risks.
• Security Incident Participation: Work with incident response teams on security issues, assisting as needed with investigations and documentation.
• Infrastructure Hardening: Support secure configurations of cloud infrastructure, with a focus on access management and basic data protection measures.
• Real-Time Monitoring Assistance: Assist with maintaining and improving security monitoring for quick detection and response to incidents.
• Tool Collaboration: Collaborate with the security team to evaluate and integrate tools that enhance DevOps security.
• Documentation and Process Integration: Help document security practices, policies, and procedures within DevOps workflows, integrating them smoothly with existing processes.

With us you will enjoy:

• Working with a team of people to build the future of an industry.
• Non-trivial challenges and various specter of interesting tasks.
• A flexible, friendly and collaborative work environment.
• Corporate culture based on common sense.
• Opportunities to influence the creation of new products and their quality.