17 марта 2026 г. в 07:32
One of the largest retailers in Kazakhstan
Responsibilities:
• Integrate security checks into CI/CD (SAST, SCA, image scanning)
• Ensure container and base image security
• Manage secrets using Vault and eliminate static secrets
• Implement SSDLC practices across projects
• Configure Kubernetes security (RBAC, admission policies)
• Build SBOM for services and control dependencies
• Define blocking/non-blocking security checks with InfoSec
• Prepare documentation for secure CI/CD processes
Requirements:
• 3+ years in DevOps / DevSecOps
• GitLab CI/CD
• SAST / SCA tools
• Docker and Kubernetes
• SSDLC principles
• Vault or similar tools
• Infrastructure and network security
• Confident Linux skills
Optional:
• OPA / Kyverno (admission controllers)
• Container signing (cosign)
• SBOM tools (e.g. Syft)
• securing production Kubernetes
• Participation in SOC2 / ISO 27001 initiatives
Contacts:
📧 d.tatamirov@small.kz
📱 @dt_ITHR
