DevSecOps Team Lead

Sofia Stars

Sofia Stars is a fast-growing global service provider that guides high-growth businesses to success. Our range of tailored solutions includes R&D, Customer Support, Sales, KYC, Risk, and Anti-Fraud services. We make every connection shine with fresh tech and cultural understanding.

We are seeking a DevSecOps Team Lead to join our team. Office presence is required.

Role Mission:

Lead and scale the DevSecOps function by embedding security into CI/CD pipelines, cloud platforms, and Kubernetes environments — enabling engineering teams to deliver secure, compliant, and high-velocity releases.

Key Responsibilities:

• Define the DevSecOps strategy, roadmap, and operating model across the organization.
• Build, mentor, and lead a high-performing DevSecOps team.
• Integrate security into CI/CD pipelines (SAST, DAST, SCA, IaC scanning, secrets scanning).
• Own security for Kubernetes (EKS), Istio, and Service Mesh environments.
• Implement and maintain policy-as-code using OPA and admission controllers.
• Secure infrastructure-as-code using Terraform, Ansible, Helm, and related tooling.
• Drive cloud security across AWS and GCP environments.
• Partner with DevOps teams to provide secure platform architectures, training, and operational support.
• Implement and maintain SIEM, logging, and security monitoring (ELK, Splunk).
• Oversee secrets management, Vault, and privileged access controls.
• Lead automation of security workflows, access control, and compliance processes.
• Ensure alignment with SSDLC (OWASP SAMM v2) and security governance standards.

Why Sofia Stars?

• Up to 25 vacation days.
• 6 Undocumented Sick Leave Days.
• Monthly food vouchers (102 EUR).
• Private Medical Insurance.
• Multisport Card.
• Birthday, Wedding and Newborn gifts.
• Breakfast, Friday lunches, fruits, and snacks in the office.
• Monthly company activities and team-building events.
• Career growth opportunities.

Grow fast, shine globally

Requirements:

• 5+ years in DevOps, DevSecOps, or Cloud Security, with leadership or ownership of security initiatives.
• Strong expertise in CI/CD pipelines and secure software delivery.
• Deep knowledge of Kubernetes, Service Mesh (Istio), and container security.
• Hands-on experience with Terraform, Ansible, Helm, or similar tools.
• Strong understanding of cloud security (AWS and/or GCP).
• Experience implementing security scanners in pipelines (SAST, DAST, SCA, IaC).
• Knowledge of microservices architecture and distributed systems.
• Experience with SIEM platforms (ELK, Splunk) and security monitoring.
• Experience with Vault, secrets management, and privileged access control.
• Understanding of networking (TCP/IP, OSI) and secure system design.
• Experience in security risk assessment, mitigation, and automation.
• Familiarity with OWASP SAMM, SSDLC, and secure development practices.