DevSecOps Team Lead

BrainRocket is a global company creating end-to-end tech products for clients across Fintech, iGaming, and Marketing. ‍Young, ambitious, and unstoppable, we've already taken Cyprus, Malta, Portugal, Poland, and Serbia by storm. Our BRO team consists of 1,300 bright minds creating innovative ideas and products. We don’t follow formats. We shape them. We build what works, launch it fast, and make sure it hits.

We are seeking a DevSecOps Team Lead to join our team in one of our European offices:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia City, Bulgaria
• Valencia, Spain
• Warsaw, Poland
  
  

🛑 No remote, no hybrid. 🟢 Office presence is required.

Role Mission

Lead and scale the DevSecOps function by embedding security into CI/CD pipelines, cloud platforms, and Kubernetes environments — enabling engineering teams to deliver secure, compliant, and high-velocity releases.

✅ Key Responsibilities

✔️ Define the DevSecOps strategy, roadmap, and operating model across the organization.

✔️ Build, mentor, and lead a high-performing DevSecOps team.

✔️ Integrate security into CI/CD pipelines (SAST, DAST, SCA, IaC scanning, secrets scanning).

✔️ Own security for Kubernetes (EKS), Istio, and Service Mesh environments.

✔️ Implement and maintain policy-as-code using OPA and admission controllers.

✔️ Secure infrastructure-as-code using Terraform, Ansible, Helm, and related tooling.

✔️ Drive cloud security across AWS and GCP environments.

✔️ Partner with DevOps teams to provide secure platform architectures, training, and operational support.

✔️ Implement and maintain SIEM, logging, and security monitoring (ELK, Splunk).

✔️ Oversee secrets management, Vault, and privileged access controls.

✔️ Lead automation of security workflows, access control, and compliance processes.

✔️ Ensure alignment with SSDLC (OWASP SAMM v2) and security governance standards.

✅ Requirements

✔️ 5+ years in DevOps, DevSecOps, or Cloud Security, with leadership or ownership of security initiatives.

✔️ Strong expertise in CI/CD pipelines and secure software delivery.

✔️ Deep knowledge of Kubernetes, Service Mesh (Istio), and container security.

✔️ Hands-on experience with Terraform, Ansible, Helm, or similar tools.

✔️ Strong understanding of cloud security (AWS and/or GCP).

✔️ Experience implementing security scanners in pipelines (SAST, DAST, SCA, IaC).

✔️ Knowledge of microservices architecture and distributed systems.

✔️ Experience with SIEM platforms (ELK, Splunk) and security monitoring.

✔️ Experience with Vault, secrets management, and privileged access control.

✔️ Understanding of networking (TCP/IP, OSI) and secure system design.

✔️ Experience in security risk assessment, mitigation, and automation.

✔️ Familiarity with OWASP SAMM, SSDLC, and secure development practices.

✅ We offer excellent benefits, including but not limited to:

🏝 24 vacation days annually.

🤒 6 sick days without a medical certificate.

🏥 Premium Health Insurance (coverage up to 5,000 EUR annually).

🎉 Special occasion gifts: birthday, wedding, newborn.

🌍 Corporate events: international parties, team buildings, activities.

📈 Career growth opportunities in a fast-growing company.

✈️ Relocation package for international candidates.

🏋️ Sports package (FitPass membership).

🗣️ Language classes: Serbian & English (company-covered).

Bold moves start here. Make yours. Apply today!

By submitting your application, you agree to our Privacy Policy.