DevSecOps (Payment integrations)

  • Полная занятость
  • На месте
  • Лимассол, Кипр
  • Старший
  • Постоянный
  • Информационные технологии
  • 3 дн. назад
Преимущества
  • Медицинское страхование
  • Пенсия
  • Помощь в переезде
  • Визовая поддержка
  • Бюджет на образование
Откликнуться

Описание вакансии

Our team is developing a payment gateway for accepting funds from users on behalf of merchants, as well as sending funds from merchants to users. The system involves storing user payment data and is subject to PCI DSS compliance. It contains multiple integrations with payment systems, providers, and other gateways and processors, including 3DS.

Job Responsibilities:

  • Design, implement, and manage infrastructure with a focus on establishing security controls and ensuring secure configuration, in collaboration with DevOps.

  • Automate cloud operations, ensuring all deployments and configurations conform to security baselines.

  • Implement infrastructure security best practices such as IAM, network security, encryption, and monitoring.

  • Develop and maintain CI/CD pipelines that integrate automated security checks such as SCA and SAST.

  • Implement security monitoring and logging systems using services such as CloudWatch, CloudTrail, AWS Security Hub, and related tooling.

  • Implement and manage security alerting mechanisms, ensuring timely detection of and response to security incidents.

  • Apply security best practices in daily operations, including password management, phishing prevention, and security evaluation of new solutions.

  • Conduct security assessments and periodic reviews as mandated by PCI DSS, ensuring continuous maintenance of processes such as vulnerability and change management.

  • Manage and control access across various services.

  • Prepare for and actively participate in PCI DSS audits, ensuring controls and evidence are in place.

  • Collaborate with development, operations, and security teams to promote a culture of shared security responsibility across all stages of the system lifecycle.

  • Train and advise team members on DevSecOps principles and secure engineering practices.

  • Participate in task definition, estimation, and prioritization, and contribute to planning activities on weekly, monthly, quarterly, and annual horizons.

  • Continuously optimize AWS infrastructure for security, performance, scalability, and cost efficiency.

  • Maintain clear documentation and provide regular reports on security posture, audit readiness, and operational metrics.

Important and Challenging Tasks:

  • Preparation for and participation in PCI DSS audits.

  • Ensuring infrastructure compliance with high security standards.

  • Continuous improvement and optimization of infrastructure and security processes.

Technology Stack:

  • AWS (WAF, Shield, GuardDuty, Security Hub, KMS, Secrets Manager, Inspector, etc.)

  • Kubernetes, Docker, Helm

  • Terraform, Terragrunt, OpenTofu

  • GitLab CI/CD

  • SAML, SSO, MFA

  • ELK Stack, CloudWatch, CloudTrail

  • Linkerd