Sweed POS is hiring a
DevSecOps Specialist

Summary

Sweed is a cannabis retail solution provider offering a comprehensive system for large retailers. With a passion for improving quality of life through medicinal plants, Sweed seeks a DevSecOps Specialist to conduct security audits, implement AppSec practices, and optimize secure development processes. The position requires over 2 years of experience in DevSecOps or AppSec roles, advanced knowledge of various security tools, proficiency in DevOps tools, and fluency in Russian with English B1 level.

Requirements

• Over 2 years of experience in DevSecOps or AppSec positions
• Advanced knowledge and hands-on experience with SCA, SAST, DAST, IAST, OAST, and RASP tools such as Trivy, Grype, OWASP ZAP, Snyk, and Imperva
• Proven experience in implementing BSIMM and OWASP SAMM
• Expertise in mitigating threats from the OWASP Top 10, OWASP Mobile Top 10, and CWE Top 25
• Proficient in DevOps tools including Kubernetes, Docker, GitLab, Deckhouse, AWS, and Terraform
• Experience in developing internal tools and integrations, with the ability to understand and read codebases in technologies such as C#, Transact-SQL, JS, Node.js, and Python
• Familiarity with Atlassian products, including automation creation
• Fluent in Russian, with English proficiency at least at the B1 level

Responsibilities

• Conducting regular security audits of applications and services
• Manual and automated vulnerability detection in developing mobile and web applications
• Automating the processes of eliminating identified vulnerabilities
• Optimizing the secure development process
• Implementing AppSec practices in development teams and conducting regular training sessions

Benefits

• Medical insurance becomes available after the probation period
• 20 working days per year of vacation
• 3 days of sick leave