DevSecOps Team Lead
Sofia Stars is an operational services company based in Sofia. We offer a range of solutions for online businesses, including R&D, Marketing, Customer Support, KYC, Risk, and Anti-Fraud services. With 300+ bright stars on our team, we deliver secure, reliable solutions with a touch of quality that shines. When you join us, you’ll be part of a place where ideas light up, and growth isn’t just a promise—it’s a journey.
This is an office-based job. 🟢 Office presence is required. 🛑 No remote, no hybrid.
We are seeking a DevSecOps Team Lead to join our team.
Lead and scale the DevSecOps function by embedding security into CI/CD pipelines, cloud platforms, and Kubernetes environments — enabling engineering teams to deliver secure, compliant, and high-velocity releases.
✔️ Define the DevSecOps strategy, roadmap, and operating model across the organization.
✔️ Build, mentor, and lead a high-performing DevSecOps team.
✔️ Integrate security into CI/CD pipelines (SAST, DAST, SCA, IaC scanning, secrets scanning).
✔️ Own security for Kubernetes (EKS), Istio, and Service Mesh environments.
✔️ Implement and maintain policy-as-code using OPA and admission controllers.
✔️ Secure infrastructure-as-code using Terraform, Ansible, Helm, and related tooling.
✔️ Drive cloud security across AWS and GCP environments.
✔️ Partner with DevOps teams to provide secure platform architectures, training, and operational support.
✔️ Implement and maintain SIEM, logging, and security monitoring (ELK, Splunk).
✔️ Oversee secrets management, Vault, and privileged access controls.
✔️ Lead automation of security workflows, access control, and compliance processes.
✔️ 5+ years in DevOps, DevSecOps, or Cloud Security, with leadership or ownership of security initiatives.
✔️ Strong expertise in CI/CD pipelines and secure software delivery.
✔️ Deep knowledge of Kubernetes, Service Mesh (Istio), and container security.
✔️ Hands-on experience with Terraform, Ansible, Helm, or similar tools.
✔️ Strong understanding of cloud security (AWS and/or GCP).
✔️ Experience implementing security scanners in pipelines (SAST, DAST, SCA, IaC).
✔️ Knowledge of microservices architecture and distributed systems.
✔️ Experience with SIEM platforms (ELK, Splunk) and security monitoring.
✔️ Experience with Vault, secrets management, and privileged access control.
✔️ Understanding of networking (TCP/IP, OSI) and secure system design.
✔️ Experience in security risk assessment, mitigation, and automation.
✅Why Sofia Stars?
🏖️ Up to 25 vacation days;
🤒 6 Undocumented Sick Leave Days;
💷 Monthly food vouchers (102 EUR);
🏥 Private Medical Insurance;
🏋🏼 Multisport Card;
🎁 Birthday, Wedding and Newborn gifts;
🍔 Breakfast, Friday lunches, fruits, and snacks in the office;
🎭 Monthly company activities and team-building events;
🚀 Career growth opportunities.
Ready to shine? Let’s make it real.
Ready to shine? Let’s make it real.
By submitting your application, you agree to our Privacy Policy.
Create a Job Alert
Interested in building your career at Sofia Stars? Get future opportunities sent straight to your email.
Apply for this job
*
indicates a required field