Senior DevSecOps engineer (EST timezone) Bucharest

Senior DevSecOps engineer (EST timezone)
Bucureşti
Bucharest, Bucharest, Romania

Would you like to join the leading international intergovernmental organization?

Allied Command Transformation (ACT) is NATO’s leading agent for change: driving, facilitating, and advocating the continuous improvement of Alliance capabilities to maintain and enhance the military relevance and effectiveness of the Alliance.

We are looking for a passionate Dev
Sec
Ops engineer who will provide remote support to ACT's digital modernization initiatives, with a focus on building resilient, secure, and scalable applications across our client's hybrid and cloud environments. Responsibilities include deploying and operating containerized applications,  automating infrastructure through Infrastructure as Code, and implementing observability practices to ensure reliability and performance. The role requires close adherence to cybersecurity and
-
trust principles, as well as integration of compliance automation and modern service mesh technologies.  The engineer will deliver incremental capabilities in agile environments and collaborate with stakeholders to ensure that outputs meet the requirements for security, scalability, and operational readiness.

Responsibilities:

• Deploy and operate containerized services using orchestration frameworks to ensure scalability and resilience.
• Automate infrastructure through Infrastructure as Code (Ia
  C) to provide consistent and repeatable environments.
• Deploy and monitor workloads in cloud environments (AWS, Azure, Google Cloud, VMware,  Open
  Stack).
• Implement site reliability engineering (SRE) and observability practices to ensure resilience,  monitoring, logging, metrics, and distributed tracing.
• Support
  - throughput and
  - oriented architectures, ensuring resilient and scalable deployments.
• Deliver incremental capabilities in Agile and Dev
  Sec
  Ops environments following frameworks such as Scrum, SAFe, or Kanban.
• Design and manage secure networking and service meshes (TLS, Istio, Linkerd, API gateways) to ensure encrypted and reliable
  -
  - service communication.
• Apply
  - trust principles and compliance automation to enforce security policies and validate system compliance.
• Manage identity and access using secure methods for secrets, tokens, certificates, and
  - privilege access control.

We are happy to hear from you if you have:

• Minimum 4 years of experience with containerization and orchestration (Docker, Kubernetes, Open
  Shift).
• Minimum 4 years of experience in designing and maintaining CI/CD pipelines with automated testing and security validation.
• Experience with Infrastructure as Code (Terraform, Ansible, Helm, Pulumi).
• Experience deploying and securing workloads in hybrid/public cloud environments (AWS, Azure, Google Cloud, VMware, Open
  Stack).
• Experience implementing site reliability engineering and observability practices (Prometheus, Grafana, ELK/Loki, Open
  Telemetry).
• Experience implementing scalable, resilient,
  - throughput systems and
  - oriented architectures.
• Experience delivering capabilities in Agile/Dev
  Sec
  Ops environments (Scrum, SAFe, Kanban).
• Experience designing and managing secure networking and service mesh (TLS, Istio, Linkerd, API gateways).
• Experience applying
  - trust principles and compliance automation (OPA, Kyverno, SBOM, CIS benchmarks).
• Experience managing secrets and access policies using modern IAM solutions (Vault, AWS KMS, Azure Key Vault, RBAC/ABAC).
• Fluent English skills (verbal and written).
• Bachelor’s degree in Computer Science, Engineering, or a related field (or equivalent professional experience).
• Willingness to work in EST time zone

If you've read the description and feel this role is a great match, we'd love to hear from you! Click "Apply for this job" to be directed to a brief questionnaire. It should only take a few moments to complete, and we'll be in touch promptly if your experience aligns with our needs.