Job Description & Requirements

•

"PAŞA Insurance" OJSC invites candidates to apply for the position of Lead Specialist in DevSecOps to become a member of a professional team. Job responsibilities include the design and assessment of software, DevOps, and Cloud architectures from a security perspective; formulation and implementation of the company's DevSecOps strategy; design, automation, and optimization of security controls (security gates) in CI/CD pipelines; integration of security requirements at an early stage (shift-left security) within the SSDLC framework; selection, configuration, and risk-based analysis of results from SAST, DAST, SCA, IaC, and Container Security tools; establishment and oversight of security architecture in Kubernetes, Docker, and Cloud environments (AWS, Azure, GCP); drafting security policies, standards, and procedures for DevOps infrastructure; leading the identification and mitigation of critical information security risks related to software and infrastructure; ensuring and monitoring compliance with NIST, CIS Benchmarks, OWASP, and internal company requirements; providing technical leadership and mentoring to DevSecOps, DevOps, and development teams; establishing mechanisms for detecting and preventing security incidents in CI/CD and runtime stages; organizing internal training and best practice sessions on security.

Job Responsibilities

The advertisement invites candidates to apply for the position of Lead Specialist in DevSecOps at "PAŞA Insurance" OJSC, outlining job responsibilities, educational qualifications, certifications, knowledge, and skills required for the role.

Education and qualifications: Higher education in Information Technology, Computer Science, or a related field. Certifications in Cybersecurity and Cloud are preferred (CKS, CKAD, AWS Security Specialty, eWPT, eCPPTv2, etc.). Knowledge and skills: Higher education in Information Technology, Computer Science or a related field; minimum 2.5–4 years of work experience in DevSecOps / AppSec / Cloud Security; proficiency in Azerbaijani, and good command of English and Russian; deep knowledge of CI/CD platforms (GitLab CI, Jenkins, GitHub Actions, Azure DevOps); strong practical experience in cloud security (AWS, Azure, or GCP); knowledge of Kubernetes Security (RBAC, Network Policy, Pod Security, Secrets Management); experience with Infrastructure as Code (Terraform, CloudFormation) and IaC security scanning; knowledge of SAST, DAST, SCA, container image scanning, and policy-as-code approaches; scripting and automation skills (Python, Bash); deep understanding of microservices and cloud-native architecture design principles; capability in Threat Modeling and making risk-based security decisions; strong analytical thinking, strategic approach, and decision-making skills; high responsibility, leadership, and effective communication skills in a multi-team environment.

Apply Now

This position requires application on the employer's website.