Senior DevSecOps Engineer
EPAM Systems
Senior DevSecOps Engineer Description
We are looking for a skilled Senior DevSecOps Engineer specializing in Static Application Security Testing to enhance our Checkmarx security scans. This role focuses on configuring, customizing, and developing scanning rules to maximize efficiency and accuracy. You will work closely with development teams to integrate security practices, ensuring our applications are secure from the ground up.
#LI-DNI#EasyApply
Responsibilities
- Develop and modify Checkmarx scanning rules using CxQL to improve detection capabilities and reduce false positives
- Optimize and customize SAST processes to align with application security requirements
- Deeply understand and advocate for SAST methodologies, explaining the how and why behind their use in the development lifecycle
- Collaborate with developers to integrate SAST tools seamlessly into their workflows and CI/CD pipelines
- Analyze scan results, identify security vulnerabilities, and provide actionable recommendations to the development teams
- Stay updated on the latest security threats and ensure our scanning rules evolve accordingly
- Educate and mentor team members on best practices in application security and SAST
Requirements
- 3+ years of relevant professional experience
- Strong experience with Checkmarx CxSAST or similar SAST tools
- Proficiency in CxQL for writing and modifying scanning rules
- Deep understanding of SAST and its role in secure software development
- Familiarity with GitHub and integrating security scans into CI/CD pipelines
- Excellent analytical skills for interpreting scan results and improving scan accuracy
- Strong communication skills to effectively collaborate with development teams and stakeholders
- Holistic understanding of DevSecOps practices, emphasizing security integration at every phase of software development
- B2+ English level proficiency
Nice to have
- Experience with Python or Go for scripting and automation
- Basic knowledge of the Google Cloud Platform
- Familiarity with CI/CD tools such as Jenkins, GitLab CI/CD, or Azure DevOps
- Experience with containerization and orchestration technologies like Docker and Kubernetes
- Understanding of SecOps tools and practices, including security monitoring, incident response, and threat modeling
- Knowledge of Infrastructure as Code tools like Terraform or Ansible
- Experience with security monitoring and logging tools like ELK Stack or Prometheus
We offer
- We gather like-minded people:
- Engineering community of industry professionals
- Friendly team and enjoyable working environment
- Flexible schedule and opportunity to work remotely within Poland
- Chance to work abroad for up to 60 days annually
- Relocation within our 50+ offices
- We provide growth opportunities:
- Outstanding career roadmap
- Leadership development, career advising, soft skills, and well-being programs
- Certification (GCP, Azure, AWS)
- Unlimited access to LinkedIn Learning, Get Abstract, O’Reilly, Cloud Guru
- Language classes in English and Polish for foreigners
- We cover it all:
- Stable income (Employment Contract or B2B)
- Participation in the Employee Stock Purchase Plan
- Benefits package (health insurance, multisport, shopping vouchers)
- Strategically located offices featuring entertainment and relaxation zones, table tennis and football, free snacks, fantastic coffee, and more
- Referral bonuses
- Corporate, social and well-being events
- Please, note:
- The set of bonuses might vary based on the role you apply for – specifics will be discussed with our recruiter during the general interview
- We will reach out to selected candidates exclusively
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.