Jobs Companies Capco Senior DevSecOps Engineer (AWS & Azure) (She/ He/ They)

About this Senior DevSecOps Engineer (AWS & Azure) (She/ He/ They) role at Capco

Capco · Onsite · Poland - Warsaw

CAPCO POLAND 

*We are looking for Poland based candidate. 

At Capco Poland, we’re not just another consultancy - we’re the spark behind digital transformation in the financial world. As a global leader in technology and management consulting, we thrive on helping clients tackle the toughest challenges across banking, payments, capital markets, wealth, and asset management.

Role Overview

We are seeking a hands-on Senior DevSecOps Engineer with strong AWS and Azure experience to embed security directly into our engineering lifecycle. In this role, you will be the technical engine that automates compliance guardrails, integrates security tooling (SAST/DAST, EDR, Vulnerability Management) into CI/CD pipelines, and routes critical security telemetry to our SIEM. Your mission is to build the automated scaffolding that allows software delivery to move at high speed without compromising on enterprise security or governance.

Key Responsibilities

  • CI/CD Security Automation: Design, build, and maintain secure deployment pipelines (e.g., GitHub Actions, Azure DevOps, GitLab CI). Integrate automated vulnerability scanning, secret detection, and software supply chain security (SCA) seamlessly into the developer workflow.
  • Policy-as-Code & Guardrails: Write, test, and deploy automated policy guardrails using Infrastructure as Code (IaC) linting and scanning tools (e.g., Checkov, Tfsec, OPA/Rego) to catch misconfigurations before they reach production.
  • Security Product Deployment: Automate the baking of EDR agents, vulnerability scanners, and monitoring tools into base machine images (AMIs, Azure Golden Images) and containerized base environments.
  • Vulnerability & Remediation Pipelines: Operationalize vulnerability management by building automated workflows that ingest findings from cloud security tools, prioritize them based on risk, and route them to engineering backlogs (e.g., Jira tracking).
  • Logging & SIEM Integration: Configure and automate the pipeline delivery of application, container, and infrastructure logs to central logging repositories and SIEM systems for real-time threat hunting.
  • Developer Enablement: Serve as a bridge between Security and Engineering, providing developer-friendly remediation guidance and creating reusable, secure-by-default code templates (Terraform modules, Helm charts).

Required Skills & Qualifications

  • DevSecOps & CI/CD Pipelines: Deep, practical experience constructing and securing automated build/release pipelines at scale.
  • Multi-Cloud Platforms: Hands-on engineering experience configuring native security services and access controls in both AWS and Azure.
  • Infrastructure as Code (IaC): Advanced proficiency with Terraform or cloud-native tooling (Bicep, CloudFormation), focusing on modular design and immutable infrastructure.
  • Security Tooling Implementation: Direct experience implementing and maintaining security products across the lifecycle (e.g., SonarQube, Prisma Cloud, Wiz, Snyk, CrowdStrike, or Sentinel).
  • Container & Orchestration Security: Strong understanding of Kubernetes (EKS/AKS) security best practices, service meshes, and container runtime defense.
  • Nice to have certifications:
    • Certified DevSecOps Professional (CDP) or Practical DevSecOps certification
    • AWS Certified Security – Specialty or Azure Security Engineer Associate
    • Certified Kubernetes Administrator (CKA) / Certified Kubernetes Security Specialist (CKS)

We offer a flexible collaboration model based on a B2B contract, with the opportunity to work on diverse projects.

Recruitment Process:

  1. HR Interview with the recruiter
  2. Technical Interview
  3. Client Interview 
  4. Feedback and offer

 

#LI-HYBRID

Ready to apply to Capco?
Apply to Capco

Similar jobs

Sign up for suggestions tailored to the jobs you open and the searches you save.

Apply now
🤖

Whoa — hold up

JobsRadar was built for real people having a rough time in their job search — not for automated requests. You're clicking way too fast and you're now temporarily blocked.

Come back later. If you're genuinely job hunting, we've got your back — just act like a human.

Catch your next role the second it’s posted.

Create a free account and we’ll watch the boards for you — the instant a job matches your search, it lands in your inbox or Telegram. No digging, no refreshing.

Create free account

Free forever · takes 30 seconds · already have one?

Get an edge on your job hunt.

Join our Telegram channel for the stuff that helps you land the role — salary benchmarks, the weekly market pulse, and new-feature drops. No spam, just signal.

Join the channel — it's free