Senior DevOps Engineer (DevSecOps)

SINGUParis Township, MI
PLN 21,580 - PLN 29,000Hybrid

About The Position

A DevOps-first role with a practical security specialization. You'll strengthen the security of our platform, pipelines and cloud infrastructure — hardening, vulnerability management and embedding security into how we build and ship — while contributing to the broader DevOps/Operations roadmap and helping SINGU scale responsibly and efficiently. Hybrid – Kraków, 2–3 days/week in office.

Requirements

  • Proven hands-on experience in DevOps, Operations, Infrastructure or Platform engineering
  • Strong Microsoft Azure expertise (Azure services, .NET-based environments, MS SQL, Microsoft-centric architectures)
  • Kubernetes: design, operation and troubleshooting
  • CI/CD with Jenkins and Azure DevOps
  • IaC with Terraform/Ansible for automated deployment, configuration and management
  • Observability: Grafana, NewRelic, Prometheus, centralized logging and alerting
  • System and infrastructure hardening and vulnerability management (identify, prioritize, remediate)
  • DevSecOps in CI/CD: SAST, SCA/dependency scanning, secret scanning
  • TLS/SSL and certificate lifecycle management (issuance, renewal, rotation, cipher hygiene)
  • Comfortable working in international, English-speaking teams

Nice To Haves

  • AWS (e.g. EC2, RDS); multi-cloud cost optimization; on-premise and hybrid environments
  • Cloud security posture management and SIEM (Microsoft Defender for Cloud, Microsoft Sentinel)
  • Container/Kubernetes security: image scanning, RBAC, network policies, admission control (OPA/Kyverno)
  • Secrets management (Azure Key Vault, HashiCorp Vault) and IaC security scanning (tfsec, Checkov)
  • Databases (PostgreSQL, MySQL, MSSQL) and messaging queues
  • Security-related certifications; familiarity with ISO 27001, ISO 9001 and GDPR

Responsibilities

  • Deliver on the DevOps/Operations roadmap, upholding standards for reliability, automation, delivery and security
  • Embed security into CI/CD — SAST/SCA/secret scanning, artifact integrity, supply-chain controls
  • Drive hardening across Azure and AWS, and own end-to-end vulnerability management
  • Secure Kubernetes (RBAC, network policies, image/cluster hardening) and IaC (policy-as-code, automated scanning)
  • Manage TLS/SSL certificate lifecycle to prevent disruptions and maintain compliance
  • Operate cloud security posture and SIEM tooling (Defender for Cloud, Sentinel) for detection, alerting and response
  • Ensure stable Azure/AWS operations; implement monitoring, alerting and incident response
  • Partner with Engineering, QA and Data & Analytics on secure-by-default standards and data platforms
  • Actively manage multi-cloud costs and participate in on-call rotations where applicable

Benefits

  • Salary: 26,000–29,000 PLN net (B2B) or 21,580–24,070 PLN gross (Contract of Employment), depending on experience
  • A real seat at the table — help shape how an international organization works securely with AI
  • A fast-moving, tech-forward environment with high autonomy and full ownership
  • Part of a fast-growing Group that scaled from a Kraków startup to a pan-European leader serving 40+ countries
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service