DevSecOps Team Lead

BrainRocket is a global company creating end-to-end tech products for clients across Fintech, iGaming, and Marketing. ‍Young, ambitious, and unstoppable, we've already taken Cyprus, Malta, Portugal, Poland, and Serbia by storm. Our BRO team consists of 1,300 bright minds creating innovative ideas and products. We don’t follow formats. We shape them. We build what works, launch it fast, and make sure it hits.

We are seeking a DevSecOps Team Lead to join our team in one of our European offices:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia City, Bulgaria
• Valencia, Spain
• Warsaw, Poland
  
  

🛑 No remote, no hybrid. 🟢 Office presence is required.

Role Mission

Lead and scale the DevSecOps function by embedding security into CI/CD pipelines, cloud platforms, and Kubernetes environments — enabling engineering teams to deliver secure, compliant, and high-velocity releases.

✅ Key Responsibilities

✔️ Define the DevSecOps strategy, roadmap, and operating model across the organization.

✔️ Build, mentor, and lead a high-performing DevSecOps team.

✔️ Integrate security into CI/CD pipelines (SAST, DAST, SCA, IaC scanning, secrets scanning).

✔️ Own security for Kubernetes (EKS), Istio, and Service Mesh environments.

✔️ Implement and maintain policy-as-code using OPA and admission controllers.

✔️ Secure infrastructure-as-code using Terraform, Ansible, Helm, and related tooling.

✔️ Drive cloud security across AWS and GCP environments.

✔️ Partner with DevOps teams to provide secure platform architectures, training, and operational support.

✔️ Implement and maintain SIEM, logging, and security monitoring (ELK, Splunk).

✔️ Oversee secrets management, Vault, and privileged access controls.

✔️ Lead automation of security workflows, access control, and compliance processes.

✔️ Ensure alignment with SSDLC (OWASP SAMM v2) and security governance standards.

✅ Requirements

✔️ 5+ years in DevOps, DevSecOps, or Cloud Security, with leadership or ownership of security initiatives.

✔️ Strong expertise in CI/CD pipelines and secure software delivery.

✔️ Deep knowledge of Kubernetes, Service Mesh (Istio), and container security.

✔️ Hands-on experience with Terraform, Ansible, Helm, or similar tools.

✔️ Strong understanding of cloud security (AWS and/or GCP).

✔️ Experience implementing security scanners in pipelines (SAST, DAST, SCA, IaC).

✔️ Knowledge of microservices architecture and distributed systems.

✔️ Experience with SIEM platforms (ELK, Splunk) and security monitoring.

✔️ Experience with Vault, secrets management, and privileged access control.

✔️ Understanding of networking (TCP/IP, OSI) and secure system design.

✔️ Experience in security risk assessment, mitigation, and automation.

✔️ Familiarity with OWASP SAMM, SSDLC, and secure development practices.

✅ We offer excellent benefits, including but not limited to:

🚀 Career growth opportunities in an international and dynamic environment;

📚 Opportunity to develop language skills with partial compensation for language courses;

🎁 Special gifts for birthdays, weddings, and newborns;

🏝️ 20 working days of paid annual vacation, plus paid sick leaves;

🍲 Office snacks and refreshments;

🏋️‍♂️ Sports package to support a healthy lifestyle;

🩺 Comprehensive medical insurance for you and your partner;

📍 Comfortable office with great facilities in a prime location;

🎉 Exciting corporate events, team-building activities, and international company parties.

Bold moves start here. Make yours. Apply today!

By submitting your application, you agree to our Privacy Policy.