DevSecOps Team Lead
Sofia Stars is a fast-growing global service provider that guides high-growth businesses to success. Our range of tailored solutions includes R&D, Customer Support, Sales, KYC, Risk, and Anti-Fraud services. We make every connection shine with fresh tech and cultural understanding.
We are seeking a DevSecOps Team Lead to join our team. Office presence is required.
Role Mission: Lead and scale the DevSecOps function by embedding security into CI/CD pipelines, cloud platforms, and Kubernetes environments — enabling engineering teams to deliver secure, compliant, and high-velocity releases.
Key Responsibilities: * Define the DevSecOps strategy, roadmap, and operating model across the organization. * Build, mentor, and lead a high-performing DevSecOps team. * Integrate security into CI/CD pipelines (SAST, DAST, SCA, IaC scanning, secrets scanning). * Own security for Kubernetes (EKS), Istio, and Service Mesh environments. * Implement and maintain policy-as-code using OPA and admission controllers. * Secure infrastructure-as-code using Terraform, Ansible, Helm, and related tooling. * Drive cloud security across AWS and GCP environments. * Partner with DevOps teams to provide secure platform architectures, training, and operational support. * Implement and maintain SIEM, logging, and security monitoring (ELK, Splunk). * Oversee secrets management, Vault, and privileged access controls. * Lead automation of security workflows, access control, and compliance processes. * Ensure alignment with SSDLC (OWASP SAMM v2) and security governance standards.
Why Sofia Stars?
- Up to 25 vacation days.
- 6 Undocumented Sick Leave Days.
- Monthly food vouchers (102 EUR).
- Private Medical Insurance.
- Multisport Card.
- Birthday, Wedding and Newborn gifts.
- Breakfast, Friday lunches, fruits, and snacks in the office.
- Monthly company activities and team-building events.
- Career growth opportunities.
Grow fast, shine globally
Requirements:
- 5+ years in DevOps, DevSecOps, or Cloud Security, with leadership or ownership of security initiatives.
- Strong expertise in CI/CD pipelines and secure software delivery.
- Deep knowledge of Kubernetes, Service Mesh (Istio), and container security.
- Hands-on experience with Terraform, Ansible, Helm, or similar tools.
- Strong understanding of cloud security (AWS and/or GCP).
- Experience implementing security scanners in pipelines (SAST, DAST, SCA, IaC).
- Knowledge of microservices architecture and distributed systems.
- Experience with SIEM platforms (ELK, Splunk) and security monitoring.
- Experience with Vault, secrets management, and privileged access control.
- Understanding of networking (TCP/IP, OSI) and secure system design.
- Experience in security risk assessment, mitigation, and automation.
- Familiarity with OWASP SAMM, SSDLC, and secure development practices.
