Security Engineer

We are looking for a Security Engineer to join our team. This role involves designing, implementing, and maintaining secure CI/CD pipelines, developing Security as Code, and ensuring the security of Kubernetes platforms and Service Mesh. You will also perform security reviews, automate the detection and remediation of security findings, and collaborate with development and SRE teams to embed security into their processes. The role requires participation in incident response and post-mortems with a focus on security improvements.

• Design, implement, and maintain secure CI/CD pipelines with maximum automation of security checks (Shift-Left).
• Develop and maintain Security as Code (policies, baselines, compliance checks).
• Ensure security of Kubernetes platforms, workloads, and Service Mesh (Istio).
• Perform security reviews of Terraform modules and infrastructure code.
• Configure and maintain WAF, runtime protection, vulnerability management, and secrets management solutions.
• Automate detection, triage, and remediation of security findings.
• Conduct regular audits of cloud environments and Kubernetes clusters.
• Collaborate closely with Development, Platform, and SRE teams to embed security into their processes.
• Participate in incident response and post-mortems with a focus on security improvements.

• 3–4+ years of hands-on experience in DevSecOps, Cloud Security, or Application Security.
• Strong understanding of DevOps practices and tools: GitLab CI/CD, ArgoCD, Helm, Terraform, Ansible.
• Solid experience securing Kubernetes clusters (EKS, GKE, or self-hosted): NetworkPolicy, Pod Security Standards, RBAC, Kyverno / Gatekeeper, secrets management, and runtime security.
• Practical experience with Service Mesh — Istio (and related solutions: Linkerd, Cilium Service Mesh).
• Hands-on experience with IaC scanning and hardening (Terraform, Crossplane): Checkov, Terrascan, tfsec, OPA/Gatekeeper.
• Experience with SAST/DAST/SCA tools: Semgrep, SonarQube, Trivy, Grype, Snyk, OWASP ZAP, Nuclei.
• Good knowledge of Secure SDLC, Shift-Left approach, Zero Trust, and Secure by Design principles.
• Solid understanding of cloud platforms (AWS + GCP required, OpenStack is a plus): IAM, encryption at rest/transit, KMS, and native security services.
• Strong Linux administration skills and scripting (Bash, Python).
• Experience with SIEM/SOAR and security logging solutions (ELK, Loki+Promtail, OpenSearch).
• Deep expertise with Cloudflare (WAF, Zero Trust, Page Shield, Workers) or similar solutions.
• Experience building Platform Security and Internal Developer Platforms with embedded security.
• Strong automation skills for security processes (Policy as Code, automated remediation).
• Familiarity with eBPF-based tools (Falco, Cilium, Tetragon).
• Experience with OpenStack security components (Keystone, Barbican, Neutron, Nova hardening).
• Knowledge of compliance frameworks (ISO 27001, SOC2, PCI DSS, GDPR).
• Strong analytical thinking and ability to investigate complex security incidents.
• High attention to detail (especially during security code reviews, policy tuning, and risk prioritization).
• Excellent communication skills — ability to explain security risks and solutions to both technical and non-technical stakeholders.
• Proactive mindset: identify risks early and propose practical, automatable solutions.
• Readiness for on-call rotations and handling operational incidents outside business hours.

• An exciting and challenging job in a fast-growing business groups, the opportunity to be part of a multicultural team of top professionals in Development, Architecture, Management, Operations, Marketing, Legal, Finance and more
• Great working atmosphere with passionate experts and leaders, sharing a friendly culture and a success-driven mindset is guaranteed
• Beautiful offices in Warsaw, Limassol, Yerevan — work remotely or on-site with comfort and enjoy the opportunity to build a network of connections with professionals day by day
• Modern corporate equipment based on macOS or Windows and additional equipment are provided
• Paid vacations, sick leave, personal events days, days off
• Corporate healthcare program for your well-being
• Referral program — enjoy cooperation with your colleagues and get the bonus
• Educational support by our L&D team: internal and external trainings and conferences, courses on Udemy
• Free internal English courses
• Sport benefit
• Multiple internal activities: online platform with newsletters, quests, gamification, and presents for collecting bonuses, RedCore talks club for movie and book lovers, board games cozy evenings, special office days dedicated to holidays, etc
• Company events, team buildings

PIN-UP Global is an international holding specializing in the development and implementation of advanced technologies, B2B solutions, and innovative products for the iGaming industry.

Read more about Pin-Up Global →