DevSecOps Engineer

Altimi is a technology acceleration partner with impressive experience spanning over 20 years, specializing in the successful delivery of software development projects for international customers. We are based in Poland. Our main area of operation is the DACH region and Scandinavia, where we are known for providing top-notch software development services. Our primary focus are managed services for companies seeking to accelerate growth, solve complex tech problems, build MVP/POC and/or modify legacy infrastructures. The main area of competence include Product & Application Engineering, DevOps, Cloud Security & Managed Services and AI & Data Enablement.  

Project Overview

You will contribute to a security critical scanning platform used to process external IP scan workloads in a fully isolated, compliant, and cloud native environment. The role focuses on developing a core backend service responsible for container orchestration, secure networking, routing, resource handling, cryptography, and full observability. Infrastructure and CI/CD pipelines are fully prepared.‑critical scanning platform used to process external IP scan workloads in a fully isolated, compliant, and cloud‑native environment. The role focuses on developing a core backend service responsible for container orchestration, secure networking, routing, resource handling, cryptography, and full observability. Infrastructure and CI/CD pipelines are fully prepared.

Responsibilities

• Build and maintain backend service components in a cloud native architecture‑native architecture

• Manage container lifecycle using Docker and  Docker Compose

• Configure MACVLAN networking and integrate with a reverse proxy

• Implement mTLS, certificate workflows, key generation, secure secret handling

• Enable complete observability: JSON logs, metrics, OpenTelemetry tracing

• Automate CI/CD pipelines (GitHub Actions), produce secure release artifacts

• Generate SBOMs (SPDX / CycloneDX)

• Ensure compliance with OWASP Top 10, ASVS, ISO 27001, and vulnerability severity policies

• Achieve high test coverage

• Prepare documentation and support handover

Requirements

• Strong experience in DevSecOps, cloud security, and containerized environments

• Solid understanding of Docker networking (including MACVLAN)

• Experience working with reverse proxies (e.g. Traefik or similar)

• Strong CI/CD automation skills (preferably GitHub Actions)

• Knowledge of TLS/mTLS, certificates, cryptography fundamentals

• Experience with secure logging, audit trails, and compliance driven systems‑driven systems

• Ability to deliver fixed-scope work packages with clear acceptance criteria

Nice to Have

• Experience with Go

• TypeScript familiarity

• Background in distributed systems or cybersecurity solutions

What We Offer:

• MultiSport card

• LuxMed medical package

• Allianz group insurance

• Value-based work culture

• Flexible working hours and remote work options