We are looking for an experienced Cloud DevSecOps Engineer to take ownership of securing and managing our cloud infrastructure, Kubernetes environments, development pipelines, to join our team working with one of our insurance industry clients from our Cyprus office in a hybrid setup.
This role combines expertise in cloud infrastructure management (ideally Azure), Kubernetes, vulnerability assessment and an understanding of secure development practices. You will play a critical role in bridging the gap between development, operations and security practices to ensure robust and compliant cloud-based solutions for our teams.
Responsibilities
- Design, implement and manage cloud infrastructure with a strong focus on Microsoft Azure environments
- Deploy, configure and manage Kubernetes clusters (e.g., Azure Kubernetes)
- Implement automation scripts and processes for managing cloud and Kubernetes services using tools like Terraform and CI/CD pipelines
- Analyze and resolve infrastructure and application vulnerabilities across projects, ensuring systems remain secure and compliant
- Proactively identify and assess vulnerabilities in live and development environments (e.g. "PostgreSQL flexible server issues" or "Kubernetes auto-mounting API credentials")
- Oversee patch management processes to ensure timely application of updates across the infrastructure
- Manage and implement required infrastructure or application-level security patches
- Partner with development teams to ensure secure coding practices are enforced and assist developers in addressing any security-related issues in the application stack
- Contribute to or review Terraform automation scripts and configuration-as-code for infrastructure updates
- Maintain comprehensive vulnerability reports to communicate findings, resolutions and risks to leadership
Requirements
- Proven experience managing cloud infrastructure with an emphasis on Microsoft Azure
- Expertise in Kubernetes (e.g., AKS or other Kubernetes services) and container orchestration
- Strong knowledge of DevSecOps and security best practices, including patch management, vulnerability assessment, and secure development/automation processes
- Demonstrated experience working with Terraform or similar automation tools for cloud and Kubernetes environments
- Excellent collaboration and communication skills with the ability to work cross-functionally in fast-paced environments
Nice to have
- Working knowledge of Java programming or the ability to support developers in implementing security updates
- Familiarity with managing security compliance exceptions and documenting processes for security approvals
- Networking skills to configure firewalls, troubleshoot connectivity issues and manage IT/network configurations
- Relevant certifications such as Azure Administrator, Azure Solutions Architect, Certified Kubernetes Administrator (CKA) or similar
