We are looking for a dedicated DevSecOps Engineer to automate and optimize our development processes and ensure secure CI/CD pipelines. Working closely with our Security Architect, your main responsibility would be to reinforce our security posture across our development teams and digital portfolio.

It is a fully remote position offering you the flexibility to work from any location in Poland, whether it's your home or one of our well-equipped offices in Gdansk, Katowice, Krakow, Lodz, Warsaw, or Wroclaw.

SEE YOURSELF IN THIS ROLE

Our customer is a leading provider of Dialysis/Renal Care products & services. The increasing connectivity of medical devices and the evolving threat landscape necessitate a robust and proactive approach to product security.

The customer is seeking a way to accelerate a comprehensive Medical Device Product Security Program. The purpose of this program is to ensure the security, integrity, confidentiality, and regulatory compliance of medical devices (machines & digital) and associated systems throughout their lifecycle (30+ digital products, 25 machines).

What You’ll Do

Collaborate with the Security Architect to drive the Security Architecture & Solutions for the core digital portfolio and future digital products
Automate repetitive tasks and implement secure CI/CD pipelines, enhancing productivity and reducing errors
Own the implementation and continuous improvement of security tooling across various areas including static/dynamic analysis, dependency scanning, and secrets detection
Implement appropriate technical and organizational security controls to mitigate identified risks, with a focus on automating these measures wherever possible
Promote and facilitate Security-By-Design principles across the development team, bridging the gap between operations and security
Implement Infrastructure as Code (IaC) security measures, protecting integral aspects of our infrastructure and ensuring secure deployments
Embed security within the DevOps lifecycle, including the design and execution of signed image verification systems to ensure the authenticity and integrity of images
Conduct ongoing security training for the development team to ensure awareness and compliance

What You Have

5+ years' experience in DevOps, with significant exposure to security aspects
Proficiency in one or more programming languages, predominantly used in DevOps like Python, Ruby, or Go
Practical experience with CI/CD pipelines and tools such as Jenkins, and AWS CodePipeline
Experience with container orchestration tools like Kubernetes and Docker, and cloud environments such as AWS, Azure, or Google Cloud
Deep understanding of secure Infrastructure as Code (IaC) strategies and signed image verification practices
Experience in using Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) tools for code analysis
Security Knowledge: Solid understanding of network access, identity, access management, applied cryptography, network security methodologies, and secure software development methodologies
Knowledge and experience with identifying and understanding the most common application security vulnerabilities (OWASP Top 10)
Agile mindset, Continuous Quality and Process Improvement
Deep expertise with more than one of the following area:
- API security
- DevSecOps practices
- Identity and Access Management
- Compliance & regulations for medical devices
- Cloud Security Architecture & Controls
- Security Architecture & Models in Healthcare
- Zero trust & Defense in depth principles
- Network security
- Infrastructure and application security assessment
- Vulnerability management
- Application Security
- IoT Security architecture
- CI/CD tooling (SAST, DAST, SCA, Secret Scan, Secure Gates)

Nice to have

Relevant certifications such as AWS/Azure Certified DevOps Engineer
Experience with medical security governance and IT general control frameworks such as DSOMM, HIPPA, ISO 13485, NIST CSF, NIST 800-53, MDR (EU), etc

We Offer

We gather like-minded people:
- Friendly team and enjoyable working environment
- Engineering community of industry’s professionals
- Flexible schedule and opportunity to work remotely within Poland
- Chance to work abroad for up to 60 days annually
- Relocation within our 50+ offices
We provide growth opportunities:
- Outstanding career roadmap
- Leadership development, career advising, soft skills and well-being programs
- Certification (GCP, Azure, AWS)
- Unlimited access to LinkedIn Learning, Get Abstract, O’Reilly and Cloud Guru
- Language classes on English and Polish for foreigners
We cover it all:
- Stable income (Employment Contract)
- Participation in the Employee Stock Purchase Plan
- Referral bonuses
- Benefits package (health insurance, multisport, shopping vouchers)
- Strategically located offices featuring entertainment and relaxation zones, table tennis and football, free snacks, fantastic coffee, and many more
- Corporate and social events
We may contact chosen candidates only

About EPAM

EPAM Systems Inc. (EPAM) is a leading digital transformation services and product engineering company. Since 1993, we have used our software engineering expertise to become a leading global provider of digital engineering, cloud and AI-enabled transformation services, as well as a leading business and experience consulting partner for global enterprises and ambitious startups. We address our clients’ transformation challenges by fusing EPAM Continuum’s integrated strategy, experience and technology consulting with our 30+ years of engineering execution to speed our clients’ time to market and drive greater value from their innovations and digital investments. Learn more at www.epam.com