DevSecOps Engineer

@ Kats Recruitment

Role Overview

The DevSecOps Engineer role bridges development, operations, and security by building, deploying, and maintaining infrastructure & pipelines that comply with NATO / BQA security standards. You will lead security automation, enforce compliance, and collaborate with architects and engineers to embed security in all systems.

Key Responsibilities

• Design, implement, and maintain secure CI/CD pipelines and infrastructure
• Integrate security controls, scans, and audits into build and deployment workflows
• Automate compliance checks, vulnerability scanning, and remediation workflows
• Develop IaC templates and modules with secure defaults
• Harden systems and services to meet strict security standards
• Monitor, respond to, and analyze security incidents in production
• Conduct threat modeling, security reviews, and risk assessments
• Document security architecture, processes, and incident analyses
• Engage with external auditors, compliance teams and stakeholders

Mandatory Requirements

• Minimum 5+ years in DevSecOps, infrastructure or cloud security in regulated environments
• Experience in NATO/defense/BQA or similar high-security domains
• Proven experience with major cloud platforms (AWS, Azure, GCP)
• Expertise with container orchestration (Kubernetes), serverless, and microservices
• Mastery of CI/CD tools (Jenkins, GitLab CI, GitHub Actions, etc.)
• Skilled with Infrastructure as Code (Terraform, CloudFormation, Ansible, etc.)
• Expertise in vulnerability scanning, secure design patterns and threat modeling
• Experience with incident response, monitoring, and SIEM operations
• Familiarity with compliance standards (ISO 27001, NIST, DoD, etc.)
• Excellent English and strong communication skills
• Based in Europe and eligible for contract work with necessary background checks

Preferred Qualifications

• Direct experience with NATO / BQA security projects
• Relevant certifications (CISSP, CISM, AWS/Azure Security, etc.)
• Experience with real-time systems, classified environments, hardware or embedded systems

What We Offer

Competitive long-term contract in a fully remote European arrangement. Work at the forefront of secure systems and infrastructure within a high-standard, professional environment with real impact.

Application Instructions

Please submit your CV/resume highlighting DevSecOps, security, and defense/regulatory experience, along with a cover letter addressing each mandatory requirement. Include project details and references from past secure infrastructure engagements.

Key skills/competency

• DevSecOps
• Security
• CI/CD
• Cloud
• Infrastructure
• Automation
• Compliance
• Threat Modeling
• IaC
• Incident Response