devops engineer

The company develops award-winning AI products, including voice assistants and speech technologies, utilizing a privacy-first and on-premises deployment architecture.

• Own Drata, controls, evidence collection, and communication with auditors while supporting SOC 2, ISO 27001, GDPR, HIPAA, and HITRUST compliance;
• Develop and maintain practical security policies and procedures for vulnerability management, access control, incident response, and data protection;
• Build and automate onboarding, offboarding, and access review processes using SSO, centralized IAM, and automated provisioning across GCP, AWS, GitHub, and SaaS tools;
• Drive SDLC security including Dependabot, SAST, SCA, dependency updates, and secrets management;
• Manage vulnerability scanning, CVE triage, patching, penetration testing, and vendor coordination;
• Participate in the response to critical vulnerabilities and security incidents;
• Improve security observability through audit logging, change tracking, and reporting;
• Manage general infrastructure tasks including Kubernetes, deployments, monitoring, automation, and on-call duties.

• 5+ Years of hands-on experience in security or DevSecOps for production infrastructure;
• Direct experience with SOC 2 implementation, including controls, evidence collection, audit preparation, and auditor communication;
• Experience with compliance automation platforms like Drata or Vanta;
• Ability to write and implement practical security policies and procedures;
• Strong hands-on experience with Docker, Kubernetes, and cloud environments (GCP and/or AWS), including IAM, network policies, and secrets management;
• Understanding of IAM/SSO, centralized access management, and access reviews;
• Experience building security-focused onboarding and offboarding processes;
• Ability to automate routine tasks using Python and/or Bash;
• Strong communication skills and ability to mentor others;
• Nice to have: Experience with GDPR, HIPAA, and HITRUST, experience in regulated industries (banking, fintech, healthcare), experience with on-prem and SaaS environments, Kubernetes security tooling (Falco, OPA/Gatekeeper, Trivy), experience using AI agents for automation, Terraform/Ansible and GitOps experience, experience with bug bounty or responsible disclosure programs.

• 21 Vacation days plus public holidays and 5 sick days;
• Private English lessons via Preply.