Skip navigation EPAM
CONTACT US

Senior DevSecOps Engineer Remote

Senior DevSecOps Engineer Description

We are looking for a skilled Senior DevSecOps Engineer specializing in Static Application Security Testing to enhance our Checkmarx security scans. This role focuses on configuring, customizing, and developing scanning rules to maximize efficiency and accuracy. You will work closely with development teams to integrate security practices, ensuring our applications are secure from the ground up.


#LI-DNI#EasyApply

Responsibilities

  • Develop and modify Checkmarx scanning rules using CxQL to improve detection capabilities and reduce false positives
  • Optimize and customize SAST processes to align with application security requirements
  • Deeply understand and advocate for SAST methodologies, explaining the how and why behind their use in the development lifecycle
  • Collaborate with developers to integrate SAST tools seamlessly into their workflows and CI/CD pipelines
  • Analyze scan results, identify security vulnerabilities, and provide actionable recommendations to the development teams
  • Stay updated on the latest security threats and ensure our scanning rules evolve accordingly
  • Educate and mentor team members on best practices in application security and SAST

Requirements

  • 3+ years of relevant professional experience
  • Strong experience with Checkmarx CxSAST or similar SAST tools
  • Proficiency in CxQL for writing and modifying scanning rules
  • Deep understanding of SAST and its role in secure software development
  • Familiarity with GitHub and integrating security scans into CI/CD pipelines
  • Excellent analytical skills for interpreting scan results and improving scan accuracy
  • Strong communication skills to effectively collaborate with development teams and stakeholders
  • Holistic understanding of DevSecOps practices, emphasizing security integration at every phase of software development
  • B2+ English level proficiency

Nice to have

  • Experience with Python or Go for scripting and automation
  • Basic knowledge of the Google Cloud Platform
  • Familiarity with CI/CD tools such as Jenkins, GitLab CI/CD, or Azure DevOps
  • Experience with containerization and orchestration technologies like Docker and Kubernetes
  • Understanding of SecOps tools and practices, including security monitoring, incident response, and threat modeling
  • Knowledge of Infrastructure as Code tools like Terraform or Ansible
  • Experience with security monitoring and logging tools like ELK Stack or Prometheus

We offer

  • We gather like-minded people:
    • Engineering community of industry professionals
    • Friendly team and enjoyable working environment
    • Flexible schedule and opportunity to work remotely within Poland
    • Chance to work abroad for up to 60 days annually
    • Relocation within our 50+ offices
  • We provide growth opportunities:
    • Outstanding career roadmap
    • Leadership development, career advising, soft skills, and well-being programs
    • Certification (GCP, Azure, AWS)
    • Unlimited access to LinkedIn Learning, Get Abstract, O’Reilly, Cloud Guru
    • Language classes in English and Polish for foreigners
  • We cover it all:
    • Stable income (Employment Contract or B2B)
    • Participation in the Employee Stock Purchase Plan
    • Benefits package (health insurance, multisport, shopping vouchers)
    • Strategically located offices featuring entertainment and relaxation zones, table tennis and football, free snacks, fantastic coffee, and more
    • Referral bonuses
    • Corporate, social and well-being events
  • Please, note:
    • The set of bonuses might vary based on the role you apply for – specifics will be discussed with our recruiter during the general interview
    • We will reach out to selected candidates exclusively

EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

A DAY IN THE LIFE

BLOG

Salman Talat
Director, Account Management
TORONTO, CANADA

Read More

BLOG

Iryna Kovalenko
Delivery Manager
KYIV, UKRAINE

Read More

BLOG

Jan Mazurek
Chief Business Analyst
GDANSK, POLAND

Read More

GET IN TOUCH

Hello.
How can we help you?

Get in touch with us. We'd love to hear from you.

Our
Locations