DeveloperSecOps Engineer

Summary

Join Hippo Insurance's Polish branch as a DevSecOps Engineer and play a key role in expanding our suite of products, supporting both mature offerings and new MVPs. You will use your cybersecurity and risk management expertise to drive security projects from concept to completion, collaborating with stakeholders to create effective security designs and protocols. Build a world-class, scalable, and resilient security infrastructure, boost developer productivity by integrating security tools and processes into CI/CD pipelines, and automate security operations using Golang, Python, and other scripting languages. Work with various cloud providers, databases, and security tools, advocating for a security-first mindset. This is a hands-on role where you'll shape how things are done and work closely with other Senior DevOps Engineers. We offer a collaborative and supportive environment with opportunities for professional development and a comprehensive benefits package.

Requirements

• Have 3+ years of hands-on DevOps experience and security is an area that you understand, have skills in and are passionate about
• Be skilled in Golang or Python
• Have hands-on experience with tools like AWS, Kubernetes, Terraform, Docker, and modern CI/CD systems
• Understand AWS VPC or GCP networking, including key concepts like network separation, security groups, and ACLs
• Have worked with security frameworks such as OWASP, NIST, or SANS and know your way around Intrusion Detection and Prevention Systems (IDPS)
• Have experience securing CDN configurations and can integrate them into a broader security strategy
• Be able to recognize and defend against common CDN attack vectors like DDoS attacks, cache poisoning, and content hijacking
• Know about authentication protocols like SAML, OIDC, OAuth or similar
• Be comfortable working with security logging and metrics systems to keep things running smoothly
• Enjoy working in a small, focused, and highly efficient team
• Have a great command of English (written & spoken)
• Be available in the afternoons – you'll join a Polish-American team, so you can expect afternoon meetings

Responsibilities

• Collaborate closely with various stakeholders, including Security Engineers, Engineering Managers, and developers to create effective security designs and protocols while securing microservices and monitoring threats
• Build a world-class, scalable, and resilient security infrastructure that keeps the Hippo platform safe and sound
• Boost developer productivity by integrating security tools and processes into our CI/CD pipelines, as well as monitoring systems and cloud environments to ensure everything runs smoothly
• Use Golang, Python, and other scripting languages like Bash on a daily basis to automate security operations, build secure APIs, and develop serverless security functions
• Work with various cloud providers, databases, open-source tools like Terraform, Kubernetes, and Docker, and a range of security tools like CSPM, DSPM, WAF, ZTN, DAST, SAST, Vault, and more, giving you a chance to explore and enhance our security setup
• Be the advocate for a security-first mindset within the DevOps team and across the organization, promoting awareness and best practices related to infrastructure security
• Put your mark on the project, and take ownership and responsibility for what you do
• Work closely with other Senior DevOps Engineers, sharing responsibility for on-call rotations and keeping the platform healthy

Preferred Qualifications

• Have Relevant Certifications (CCSP, CSSLP, AWS certifications, etc.)
• Have Experience with SOX 404(b), SOC2

Benefits

• Salary 23.000 – 26.000 PLN + VAT on B2B or equivalent on the contract of employment
• Form of employment of your choosing
• Remote work & flexible working hours
• Paid sick leave
• Paid holidays
• Private medical care with dentists & orthodontists package for you and your family
• Group life insurance
• Psychotherapists support — free online sessions with psychologists and psychotherapists
• Home physiotherapy
• Multisport card & meditation apps reimbursed 50%
• Gear with Apple Logo and monitor
• 50% reimbursement for courses, conferences, books & certificates
• Free access to private language lessons
• 6 Personal Development Days & 4 Voluntary Days Off
• Cafeteria platform — extra “stówka”every month to spend on whatever you want to
• Nanny services for parents
• Concierge services – a personal assistant to help you to deal with your everyday matters
• Chill room with table football & PlayStation 5
• Free snacks, and ice cream in the office (every day, all year round!)
• Free Friday Lunch in the office
• Team building events — we party together several times a year during the annual Offsite & Christmas Parties, beer after work, or our #WinterEscapeMonth workation in Cyprus