Senior DevSecOps Engineer (AWS & Azure) (She/ He/ They)

Posted 7 Hours Ago
Be an Early Applicant
Hiring Remotely in Poland
Remote or Hybrid
Senior level
Fintech • Professional Services • Consulting • Energy • Financial Services • Cybersecurity • Generative AI
Be Yourself at Work, Make a Difference, and Act with Integrity are our values at Capco.
The Role
Build and automate secure CI/CD pipelines, embed security tooling and policy-as-code across AWS and Azure, automate EDR and vulnerability tooling deployment, route logs to SIEM, and enable developers with secure IaC modules and remediation workflows.
Summary Generated by Built In

CAPCO POLAND 

*We are looking for Poland based candidate. 

At Capco Poland, we’re not just another consultancy - we’re the spark behind digital transformation in the financial world. As a global leader in technology and management consulting, we thrive on helping clients tackle the toughest challenges across banking, payments, capital markets, wealth, and asset management.

Role Overview

We are seeking a hands-on Senior DevSecOps Engineer with strong AWS and Azure experience to embed security directly into our engineering lifecycle. In this role, you will be the technical engine that automates compliance guardrails, integrates security tooling (SAST/DAST, EDR, Vulnerability Management) into CI/CD pipelines, and routes critical security telemetry to our SIEM. Your mission is to build the automated scaffolding that allows software delivery to move at high speed without compromising on enterprise security or governance.

Key Responsibilities

  • CI/CD Security Automation: Design, build, and maintain secure deployment pipelines (e.g., GitHub Actions, Azure DevOps, GitLab CI). Integrate automated vulnerability scanning, secret detection, and software supply chain security (SCA) seamlessly into the developer workflow.
  • Policy-as-Code & Guardrails: Write, test, and deploy automated policy guardrails using Infrastructure as Code (IaC) linting and scanning tools (e.g., Checkov, Tfsec, OPA/Rego) to catch misconfigurations before they reach production.
  • Security Product Deployment: Automate the baking of EDR agents, vulnerability scanners, and monitoring tools into base machine images (AMIs, Azure Golden Images) and containerized base environments.
  • Vulnerability & Remediation Pipelines: Operationalize vulnerability management by building automated workflows that ingest findings from cloud security tools, prioritize them based on risk, and route them to engineering backlogs (e.g., Jira tracking).
  • Logging & SIEM Integration: Configure and automate the pipeline delivery of application, container, and infrastructure logs to central logging repositories and SIEM systems for real-time threat hunting.
  • Developer Enablement: Serve as a bridge between Security and Engineering, providing developer-friendly remediation guidance and creating reusable, secure-by-default code templates (Terraform modules, Helm charts).

Required Skills & Qualifications

  • DevSecOps & CI/CD Pipelines: Deep, practical experience constructing and securing automated build/release pipelines at scale.
  • Multi-Cloud Platforms: Hands-on engineering experience configuring native security services and access controls in both AWS and Azure.
  • Infrastructure as Code (IaC): Advanced proficiency with Terraform or cloud-native tooling (Bicep, CloudFormation), focusing on modular design and immutable infrastructure.
  • Security Tooling Implementation: Direct experience implementing and maintaining security products across the lifecycle (e.g., SonarQube, Prisma Cloud, Wiz, Snyk, CrowdStrike, or Sentinel).
  • Container & Orchestration Security: Strong understanding of Kubernetes (EKS/AKS) security best practices, service meshes, and container runtime defense.
  • Nice to have certifications:
    • Certified DevSecOps Professional (CDP) or Practical DevSecOps certification
    • AWS Certified Security – Specialty or Azure Security Engineer Associate
    • Certified Kubernetes Administrator (CKA) / Certified Kubernetes Security Specialist (CKS)

We offer a flexible collaboration model based on a B2B contract, with the opportunity to work on diverse projects.

Recruitment Process:

  1. HR Interview with the recruiter
  2. Technical Interview
  3. Client Interview 
  4. Feedback and offer

#LI-HYBRID

Skills Required

  • Deep practical experience constructing and securing automated CI/CD build and release pipelines (e.g., GitHub Actions, Azure DevOps, GitLab CI).
  • Hands-on engineering experience configuring native security services and access controls in both AWS and Azure.
  • Advanced proficiency with Terraform or cloud-native IaC tooling (Bicep, CloudFormation) focusing on modular design and immutable infrastructure.
  • Experience with IaC linting and scanning tools (e.g., Checkov, tfsec, OPA/Rego) to enforce policy-as-code.
  • Direct experience implementing and maintaining security products across the lifecycle (e.g., SonarQube, Prisma Cloud, Wiz, Snyk, CrowdStrike, Sentinel).
  • Strong understanding of Kubernetes (EKS/AKS) security best practices, service meshes, and container runtime defense.
  • Ability to automate baking of security agents and tooling into base machine images (AMIs, Azure Golden Images) and container base images.
  • Experience operationalizing vulnerability management: ingesting findings, prioritizing by risk, and integrating with issue trackers (e.g., Jira).
  • Experience configuring and automating delivery of logs from application, container, and infrastructure to central logging and SIEM systems.
  • Developer enablement experience: creating reusable secure-by-default code templates such as Terraform modules and Helm charts.
  • Poland-based candidate (must be located in Poland).
  • Certified DevSecOps Professional, AWS Certified Security Specialty, Azure Security Engineer Associate, CKA/CKS.

What the Team is Saying

Sarvani
Michael
Josh
Marina
Dreidel
Maud
Lydia
Chris

Capco Compensation & Benefits Highlights

  • Healthcare Strength Health, dental, and vision coverage are described as solid with low copays and a good variety of choices, complemented by mental‑health resources, an EAP, and wellbeing events. Company materials emphasize global availability of these supports.
  • Parental & Family Support Enhanced maternity, paternity, adoption, and shared parental leave are highlighted, with several months of maternity leave noted in the U.S. in some accounts. Additional paid leave is called out for life events such as pregnancy loss, fertility treatment, menopause, and bereavement.
  • Wellbeing & Lifestyle Benefits A global wellbeing program, coaching/mentoring, mental‑health initiatives, and wellness reimbursements (e.g., gym, fitness) are positioned as core parts of the offering. Flexible working is emphasized alongside regionally tailored wellbeing events.

Capco Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: London
6,000 Employees
Year Founded: 1998

What We Do

Capco, a Wipro company, is a global management and technology consultancy specializing in driving transformation in the energy and financial services industries. Capco operates at the intersection of business and technology by combining innovative thinking with unrivalled industry knowledge to fast-track digital initiatives for banking and payments, capital markets, wealth and asset management, insurance, and the energy sector. Capco’s cutting edge ingenuity is brought to life through its award-winning Be Yourself At Work culture and diverse talent. TRUSTED ADVISORS - Our collaborative and entrepreneurial approach position us as trusted long-term partners to our clients. DEEP EXPERTISE - Clients look to us for clear guidance, proven expertise, and the support they need to set their companies up for success. DISRUPTIVE SOLUTIONS- We do not provide off -the-shelf answers to clients’ challenges. Instead, we work in close collaboration to understand the issues, and craft disruptive, bespoke solutions. ACCOUNTABILITY AND OWNERSHIP - We recognize every client has distinct needs and expectations, and we take ownership and accountability for the solutions we design, build, and deliver.

Why Work With Us

We support and encourage an inclusive culture, entrepreneurial outlook and independent thinking. Capco is not about organizational charts and rigid hierarchies – we want all employees to feel that Capco is their firm to own and run. We believe diversity powers innovation. Be Yourself At Work (#BYAW) is an integral and underlying part of our culture

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery

Capco Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

Typical time on-site: Not Specified
Company Office Image
HQLondon, GB
Company Office Image
Bengaluru, Karnataka
Company Office Image
Bengaluru, Karnataka
Company Office Image
Berlin, DE
Company Office Image
Bratislava, SK
Company Office Image
Brussels, BE
Company Office Image
Charlotte, NC
Company Office Image
Chicago, IL
Company Office Image
Dallas, TX
Company Office Image
Düsseldorf, DE
Company Office Image
Edinburgh, GB
Company Office Image
Frankfurt am Main, DE
Company Office Image
Geneva, CH
Company Office Image
Houston, TX
Company Office Image
Kuala Lumpur, MY
Company Office Image
Milan, IT
Company Office Image
Mumbai, IN
Company Office Image
New York, NY
Company Office Image
Orlando, FL
Company Office Image
Paris, FR
Company Office Image
Singapore, SG
Company Office Image
Toronto, Ontario
Company Office Image
Vienna, AT
Company Office Image
Zürich, CH
Learn more

Similar Jobs

Capco Logo Capco

Devsecops Engineer

Fintech • Professional Services • Consulting • Energy • Financial Services • Cybersecurity • Generative AI
Remote or Hybrid
Poland
6000 Employees

Capco Logo Capco

Cloud Architect

Fintech • Professional Services • Consulting • Energy • Financial Services • Cybersecurity • Generative AI
Remote or Hybrid
Poland
6000 Employees

Capco Logo Capco

Business Analyst

Fintech • Professional Services • Consulting • Energy • Financial Services • Cybersecurity • Generative AI
Remote or Hybrid
Poland
6000 Employees

Capco Logo Capco

Consultant

Fintech • Professional Services • Consulting • Energy • Financial Services • Cybersecurity • Generative AI
Remote or Hybrid
Poland
6000 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account