DevSecOps Engineer

@ Kats Recruitment

Role Overview

You will serve as the bridge between development, operations, and security, building, deploying, and maintaining infrastructure and pipelines that comply with NATO / BQA security standards. You will lead security automation, enforce compliance, and partner with architects and engineers to embed security deeply in all systems.

Key Responsibilities

• Design, implement, and maintain secure CI/CD pipelines and infrastructure
• Integrate security controls, scans, and audits into build and deployment workflows
• Automate compliance checks, vulnerability scanning, and remediation workflows
• Develop IaC templates and modules with secure defaults
• Harden systems, environments, and services to meet strict security standards
• Monitor, respond to, and analyze security incidents in production
• Conduct threat modeling, security reviews, and risk assessments
• Document security architecture, processes, and incident analyses
• Interact with external auditors, compliance teams, and stakeholders

Mandatory Requirements

Domain / Security Experience: Minimum 5+ years in DevSecOps, infrastructure security, or cloud security in regulated, defense, or government environments. Prior exposure to NATO / defense / BQA or similar high-security domains.

Cloud & Infrastructure Expertise: Hands-on experience with major cloud platforms (AWS, Azure, GCP), strong knowledge of VPCs, networking, IAM, security groups, and zero-trust fundamentals; container orchestration with Kubernetes, serverless, and microservices.

CI/CD, Automation & Tooling: Mastery of CI/CD tools (Jenkins, GitLab CI, GitHub Actions, etc.) and experience in building secure pipelines with automation, testing, rollback, and artifact control; proficiency in Infrastructure as Code tools (Terraform, CloudFormation, Ansible, etc.).

Security, Threat Modeling & Hardening: Expertise in secure design patterns, encryption, IAM, key management; skilled in vulnerability scanning and integrating penetration tests.

Incident Response & Monitoring: Experience with establishing security monitoring, SIEMs, log management, and alerting; background in incident response and forensics.

Process Rigor & Compliance: Familiarity with compliance standards (ISO 27001, NIST, DoD, etc.), strong discipline in change control, audit processes, and documentation.

Soft Skills & Communication: Excellent English communication skills with ability to explain complex security issues to non-technical stakeholders.

Logistics & Eligibility: Based in Europe, must engage under contract legally and undergo necessary security/background checks.

Preferred Qualifications

Direct experience with NATO / BQA security projects, relevant certifications (CISSP, CISM, AWS / Azure Security), hands-on experience in real-time systems, and exposure to hardware or network-level security.

What We Offer

Competitive long-term contract, remote (European) work, opportunity to work at the forefront of secure systems and defense technology, stable engagement, and a professional environment that values impact.

Application Instructions

Submit your CV/resume highlighting DevSecOps, security, and defense/regulatory experience. Include a cover letter addressing how you meet each mandatory requirement along with links or details for past projects in secure, regulated infrastructures. Provide references or contacts who can verify your performance in similar roles.

Key skills/competency

• DevSecOps
• Security Automation
• CI/CD
• Infrastructure as Code
• Cloud Security
• NATO
• BQA
• Compliance
• Threat Modeling
• Incident Response