DevSecOps Engineer

We are looking for a DevSecOps Engineer to join our team and help ensure the security and reliability of our infrastructure, CI/CD pipelines, and critical systems.

Who We Are

arabam.com, the leading auto classifieds marketplace of Turkey, was established in 2000 and joined the iLab Holding family in 2016.

The arabam.com team, working with the mission to make buying and selling vehicles from the Internet much more reliable, easier and more comfortable, aims to improve the users experience with new functions continuously.

Those who want to sell their car or who want to buy a car can make transactions anytime, anywhere.

• 7 million users per month,
• Over 200 million page views,
• 7000+ car dealer members,
• 6 million individual members,
• 92% mobile traffic.

About You

We are looking for a security-minded team player who:

• Is eager to learn and continuously improve,
• Has strong problem-solving skills and a proactive mindset,
• Writes clean, maintainable, and secure code,
• Can analyze and implement security solutions effectively,
• Can collaborate with cross-functional teams and communicate effectively,
• Is experienced in working with large-scale systems,
• Enjoys working in a fast-paced environment.

If You Have

• 2+ years of experience in SecOps or DevSecOps roles.
• Expertise in Kubernetes, Docker, and container technologies.
• Strong knowledge of GitLab Pipelines and CI/CD processes.
• Experience with container security tools (e.g., StackRox).
• Hands-on experience in securing databases (e.g., MongoDB, Redis, Kafka, ClickHouse).
• Experience with monitoring tools like Trend Micro Cloud One or equivalents.
• Solid understanding of security policies and compliance.
• Experience in API security and API Gateway management.
• Strong communication skills, both written and verbal.

Preferred Skills:

• Experience in disaster recovery scenarios.
• Expertise in monitoring and log management for large-scale systems.

What You’ll Be Doing

• Ensure the security of CI/CD processes, including GitLab Pipelines.
• Manage and optimize Kubernetes clusters with a security-first approach.
• Utilize and enhance container security tools (e.g., StackRox).
• Implement security policies for image management platforms like Harbor Registry.
• Manage and configure the security of critical systems such as Redis, MongoDB, Kafka, ClickHouse, and Elasticsearch.
• Lead and monitor vulnerability management processes.
• Execute patch management using tools like ManageEngine Patch Manager Plus.
• Audit API security and configure API Gateways.
• Use monitoring and reporting tools (e.g., Trend Micro Cloud One) to analyze system status and threats.
• Plan and conduct penetration tests or manage external resources for such tests.

What Do We Offer:

• We continue to work remotely due to a pandemic since March 2020,
• The development team is consisting of people who are collaborative, sincere, talented and willing to learn and share new things,
• The opportunity to work with cutting-edge security technologies.
• We support developers to improve their skills, the candidate will have access to online learning courses,
• We encourage developers to test and implement cutting edge technologies,
• We have a medium publication that you can have a look: medium-arabamlabs.

If you are passionate about security and want to be part of a dynamic team, apply now!

Please check the below link to see our Candidate Privacy Notice for detailed information on how we process your personal data. https://www.arabam.com/kisisel-bilgilerin-korunmasi

The personal data you submit will be processed in accordance with our privacy policy.