DevSecOps Engineer

About Nord Security

At Nord Security, we're creating a safer cyber future. We help people and businesses take back control of their online security, privacy, and data. From VPNs to password managers, threat intelligence to eSIMs for travel—our teams turn complex problems into solutions trusted by millions worldwide. Life is online. In this DevSecOps Engineer role, you’ll help people own it.

Nord Security is a global leader in internet privacy and security solutions and Lithuania’s second tech unicorn. Established in 2012, Nord Security now has more than 1400 employees and serves millions of users worldwide. Our team has a global mission to shape a more secure and peaceful online future for people everywhere. With that in mind, we built several advanced cybersecurity solutions: NordVPN, NordLayer, NordLocker, NordPass, NordProtect, NordStellar, and Saily.

NordVPN is the world’s most advanced VPN service provider, used by millions of internet users worldwide. NordVPN provides double VPN encryption and Onion Over VPN and guarantees privacy with zero tracking. One of the key features of the product is Threat Protection, which blocks malicious websites, malware, trackers, and ads. NordVPN is very user friendly, offers one of the best prices on the market, and has over 5,000 servers in 59 countries worldwide.

Main Responsibilities of a DevSecOps Engineer

• Build, test, and maintain infrastructure and tools that allow for secure, agile software development and automated releases.
• Document DevOps processes, including developing standards to guide operations, support, and maintenance.
• Ensure secure platform/infrastructure/delivery design.
• Automate security controls across cloud posture, policy enforcement, and container scanning/hardening, reducing manual effort and improving remediation speed.
• Work together with the Security and Platform teams.
• Identify manual processes that can be automated efficiently.
• Mentor other engineers, define our technical security culture, and help build a Web Security team presence across our product range.
• Drive cloud security posture improvements using CSPM tooling, including automation, prioritization, and remediation workflows.
• Implement and establish supply-chain security controls, Kubernetes security guardrails.
• Enable and operate cloud-native security controls across CI/CD and Kubernetes (CSPM/CNAPP, policy-as-code, container scanning, image hardening).

Core Requirements

• Knowledge in Docker, Kubernetes, CI/CD Pipeline (GitLab, Azure DevOps), Infrastructure design, and IaC (Terraform, Ansible).
• Strong Cloud Agnostic experience (AWS preferred).
• Demonstrated experience with secure development, coding, and engineering practices.
• Proficiency in automation and monitoring tools (ability to automate repeatable tasks via scripting) for Linux and Windows environments.
• Experience with Security as Code (SaC) tools.
• Understanding of DevSecOps Maturity Model.

Bonus Points For

• Experience with CSPM platforms and remediation automation workflows.
• Experience with container and supply-chain security.
• Experience with Kubernetes security controls and policy-as-code / guardrail patterns.
• Experience with SAST tools maintenance and setup.

What We Offer at Nord Security

We're always looking to expand our team of future shapers, restless achievers, self-movers, and team players. Here's what we offer:

• Innovate with industry leaders: Work alongside global experts to build world-leading cybersecurity tools, impacting millions of users around the world.
• Learn & grow: Boost your skills via our extensive training programs (online and offline) & other resources. Benefit from mentorship and career-switch opportunities to grow within the company.
• Work in a next-gen Cyber City office: Thrive in our bustling office, featuring ergonomic workspaces, modern meeting rooms, engaging events, and specialty coffee to fuel your day.
• Hybrid work: Enjoy the flexibility with 3 office days and working from home for the remaining 2.
• Work from anywhere: Recharge with a change of scenery – choose work from any location when you feel a need to power your creativity and drive.
• Physical well-being: Boost your health with free-of-charge 24/7 gym access, onsite and online workouts, and consultations led by in-house Physical Well-Being experts.
• Mental & emotional health: Nurture your mind with free psychologist consultations, dedicated mental health events, and premium access to top-rated wellness apps like Calm, Headspace, and Mindletic.
• Premium healthcare: Receive private health insurance giving you peace of mind for your health needs.
• Extra days off: Enjoy additional vacation days off as you grow with us. Plus, get extra days for sick leave, special occasions, or parenting needs.
• Joyful moments – special treats: Celebrate life’s big moments with special gifts from us on your birthday, anniversary, and other major events, such as weddings or the arrival of a new family member.
• Company Events & Team-building: Experience iconic Nord Security celebrations, team-buildings, and knowledge-sharing events, nurturing bonds that fuel our success.
• Workation: Embark on a legendary company getaway abroad, filled with exciting activities, live concerts, engaging workshops, and epic time together.

Key skills/competency

• DevSecOps
• Cloud Security
• Container Security
• Kubernetes
• CI/CD
• Infrastructure as Code (IaC)
• Automation
• Security as Code (SaC)
• CSPM (Cloud Security Posture Management)
• Secure Development Practices