How You'll Make an Impact: 

As a Senior DevOps Engineer at Cloudbeds, your goal is to constantly improve and scale our SaaS platform to deliver an exceptional experience to hoteliers and their guests worldwide. You'll own the creation, monitoring, automation, and support of our cloud infrastructure and delivery pipelines — enabling product teams to ship high-quality software with speed and confidence. Working within a bottom-up culture that values healthy debate and collaborative problem-solving, you'll have real influence over architecture decisions and the opportunity to shape how we scale infrastructure for one of the fastest-growing hospitality technology platforms in the world.

Our Infrastructure Team: 

Our Infrastructure team is made up of engineers who take genuine pride in their craft, owning projects end-to-end and holding themselves to a high bar. We're passionate about technology and constantly pushing to improve our stack, not just maintain it. If you thrive in an environment where attention to detail matters, great communication is a given, and you're comfortable challenging the status quo to make things better, you'll feel right at home here.

What You Bring to the Team:

• Architect, improve, and scale Cloudbeds' cloud infrastructure on AWS, with a focus on reliability, security, and performance
• Build and evolve our Kubernetes (EKS) platform, driving adoption of containerization best practices across engineering teams
• Automate infrastructure provisioning and configuration using infrastructure-as-code tools like Terraform
• Design, build, and maintain CI/CD pipelines (GitHub Actions, ArgoCD) that enable fast, reliable software delivery
• Partner with product and engineering teams to drive projects to production, sharing DevOps expertise and ensuring strong environment configuration from the infrastructure side
• Maintain and improve monitoring, logging, and alerting systems to ensure platform health and rapid incident response
• Participate in on-call rotation to support production environment stability.

What Sets You Up for Success:

• 5+ years of experience as a DevOps Engineer working hands-on with AWS (networking, compute, storage, databases, queues, cache, permissions).
• 5+ years of strong Kubernetes and Docker experience, including implementing and scaling EKS platforms at production scale.
• Deep expertise with Terraform for infrastructure-as-code and configuration management.
• Proven experience building and supporting CI/CD pipelines using GitHub Actions and ArgoCD.
• Strong knowledge of monitoring and observability tools such as Datadog, Prometheus, Loki, or AWS CloudWatch.
• Working knowledge of web application servers (NGINX, Ingress controllers), databases (MySQL, PostgreSQL, Aurora), caching (Redis, Memcached), and queue technologies (SQS).
• Ability to write Bash and/or Python scripts to automate operational tasks.
• Strong Linux system administration skills and solid networking fundamentals.
• Excellent written and verbal English communication skills; comfortable working asynchronously across a globally distributed remote team.

#LI-REMOTE #LI-IK1

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
💻 Learning and development opportunities and interesting, challenging tasks.
✈️ Relocation package (tickets, staying in a hotel for up to 2 weeks, and visa relocation support for our employees and their family members).
📚 Opportunity to develop language skills, with partial compensation for the cost of English and Portuguese language classes (for localization purposes). 
🎾 Partial compensation for tennis and padel lessons. 
🏀 Urban Sport membership benefit (the most diverse sports and wellness offering in Europe, with more than 50+ activities). 
🏥 Private medical coverage, including inpatient, outpatient, dental care, annual check-ups, and maternity support. 
🏝 Time for proper rest, with 24 non-business days per year and an additional 6 paid sick days. 
🚌 Transport compensation - 200 euros net per month. 
📈 Competitive remuneration level with annual review. 
🤝 Teambuilding activities.