SecOps Engineer
Description
We are looking for a SecOps Engineer to join our team. This role involves designing, implementing, and maintaining secure cloud network architecture, implementing Zero Trust Network Access principles, and automating security controls. You will collaborate closely with Infrastructure, Platform, and DevOps teams.
Responsibilities
- Design, implementation, and maintenance of secure cloud network architecture in a multi-account environment
- Cloud network segmentation, traffic control between accounts, Transit Gateway / Hub-Spoke models, PrivateLink, VPC Peering
- Implementation of Zero Trust Network Access principles at the cloud infrastructure level
- Development and maintenance of secure Infrastructure as Code (primarily Terraform + security policies)
- Auditing, hardening, and security monitoring of Linux hosts (CIS Benchmarks, auditd, osquery, etc.)
- Automation of security controls and compliance (SCP, IAM policies, GuardDuty, Security Hub, etc.)
- Participation in threat modeling for cloud infrastructure
- Continuous improvement of Cloud Security Posture (CSPM) and Network Security Posture
- Close collaboration with Infrastructure, Platform, and DevOps teams on network security and IaC matters
Requirements
- Strong background in network security (3+ years of hands-on experience)
- Solid practical experience with cloud networking (AWS/Azure/GCP) VPC, Security Groups, Route Tables, Firewalls, Network Policies
- Confident proficiency with Terraform (or similar IaC tools) in production environments
- Experience with Linux server hardening and auditing
- Good understanding of Zero Trust principles and modern cloud networking approaches
- Knowledge of core cloud security services (GuardDuty, Inspector, Security Hub, IAM, etc.)
- Experience with Kubernetes network security (NetworkPolicy, Cilium, Calico, Istio)
- eBPF-based tools (Falco, Tetragon)
- Policy as Code experience (OPA/Gatekeeper, Sentinel, Kyverno)
- Experience working with large-scale Terraform projects (modules, Terragrunt, best practices)
- Experience performing cloud security assessments and audits
- Ability to explain complex technical solutions to non-technical stakeholders
- Strong ownership and proactivity – able to drive tasks from idea to production
- Good communication and collaboration skills in a cross-functional environment
- Attention to detail and a security-first (paranoid) mindset
- Cloud Networking (VPC, Transit Gateway, Security Groups, NACL, PrivateLink, etc.)
- Terraform
- Linux (hardening, auditing, security tools)
- AWS / Azure / GCP (specify your main cloud)
- Kubernetes and container network security
- OPA / Gatekeeper / Kyverno
- Cloud security platforms (AWS Security Hub, GuardDuty, Azure Defender, Prisma Cloud, etc.)
Benefits
- Paid vacations, sick leave, personal events days, days off
- Corporate health insurance program for your well-being
- Referral program enjoy cooperation with your colleagues and get the bonus
- Educational programs: regular internal training sessions, compensation for external education, attendance of specialized global conferences
- Rewards program for mentoring and coaching colleagues
- Free internal English courses
- Yoga classes to help you stay active and energized
- In-house Travel Service
- Multiple internal activities: online platform for employees with quests, gamification, presents and news, RedCore clubs for movie / book / pets lovers, special office days dedicated to holidays
- Corporate events, team buildings
About Pin-Up Global
PIN-UP Global is an international holding specializing in the development and implementation of advanced technologies, B2B solutions, and innovative products for the iGaming industry.