Raiffeisen Bank is the largest Ukrainian bank with foreign capital. For more than 30 years, we have been creating and building the banking system of our country.
Raiffeisen employs more than 5,000 employees, including one of the largest product IT teams, which includes 900+ specialists. Every day, we work side by side so that more than 2.5 million of our clients can receive quality service, use the bank’s products and services, and develop their business, because we are #TogetherWithUkraine.
About the Role We are the Product Security team responsible for the security, reliability, and trust of Raiffeisen Bank’s digital ecosystem.
Our mission is to integrate security at every stage of the development lifecycle and continuously improve the resilience of our services.
We are looking for a DevSecOps / DevOps Engineer (Security) — a specialist who combines strong expertise in infrastructure and platform engineering with a solid understanding of security practices, automation, and modern cloud-native technologies.
You will work closely with development teams, integrate security practices into CI/CD pipelines, support authentication and authorization platforms, and ensure that environments meet high standards of security, performance, and availability.
In parallel, you will help implement a Shift-Left Security approach by automating security checks, enforcing policies, and integrating security services directly into development processes and infrastructure.
You will also introduce AI tools to enhance the efficiency of DevOps processes.
Your future responsibilities:
Integrate security tools and practices into CI/CD pipelines (SAST, DAST, SCA, container scanning, etc)
Implement security as a service in AWS and Kubernetes environments, enforce security policies across infrastructure and applications
Implement integrations and perform DevOps tasks for authentication and authorization platforms, collaborate with Golang/Java developers
Design, implement, and deploy scalable, reliable, and secure devops infrastructure
Monitor and troubleshoot production systems to ensure optimal performance, low latency, and high availability. Implement and maintain monitoring, logging, and alerting systems
Automate security checks and compliance validation in deployment workflows
Own and maintain critical infrastructure and DevOps services end-to-end
Contribute to technical documentation, security guidelines, and knowledge sharing
Leverage AI tools and automation to accelerate development, troubleshooting, and security operations
Your skills and experience:
Proficiency in managing and orchestrating containerized applications with Kubernetes (deployment, scaling, monitoring, security)
Hands-on experience with Git, AWS, k8s, Vault, Helm, Prometheus, Grafana, PostgreSQL
Experience with GitOps tools such as Argo CD, Flux, or similar
Solid understanding of CI/CD pipeline implementation with integrated security scanning
Knowledge of DevSecOps practices and shift-left security principles
Experience with security scanning tools (Trivy, Snyk, SonarQube, Checkov, or similar)
Experience with infrastructure-as-code tools (Terraform/Terragrunt)
Understanding of container security best practices and image hardening
Experience with secrets management solutions (HashiCorp Vault, AWS Secrets Manager, or similar)
Strong problem-solving and troubleshooting abilities
Solid understanding of Linux systems and networking fundamentals
Proactive mindset with a sense of ownership and accountability
Nice to have
Knowledge of OAuth 2.0, OpenID Connect, or similar authentication protocols
Background in high-availability and secure system design
Knowledge of network security, firewalls, and zero-trust architecture
Experience automating security tasks with AI-powered tools or scripts
Openness to using AI-assisted development tools
We offer what matters most to you:
Competitive salary: we guarantee a stable income and annual bonuses for your persona
