Remote Senior DevOps / DevSecOps Engineer

Shift4 is a leader in commerce-enabling technology, growing rapidly and boldly challenging the status quo of payment ecosystems across the globe. We power billions of transactions annually for hundreds of thousands of businesses in virtually every industry.

We made it from scratch, driven by the ambitious challenges and opportunities they brought. We made it with the support of the exceptional team, being the driving force behind our aspiring mission to simplify complex payment ecosystems.

As a company, we do not sit idly, but we're doing big things and making bold moves! Every day at Shift4 is an exciting ride! It can't be any different when you partner with companies like Time Magazine, Burger King, Wendy's, Best Western, Wyndham Hotels & Resorts, Hilton and Budget - to name but a few.

Our approach:

1. Leveraging AWS capabilities instead of reinventing the wheel
2. Prioritizing automation over repetitive manual tasks
3. Building self-healing IT infrastructures
4. Systematic scalability and security assessments
5. Security-by-design across all layers of infrastructure
6. Proactive threat detection and incident response processes

Over 60 AWS services implemented, including:

1. IaC & Automation: CloudFormation/CDK,Python, Ansible, Packer, Jenkinsfile, Chaos Toolkit
2. Databases: Aurora, DMS, Redshift, RDS, DynamoDB, ElastiCache
3. Data Streaming: Kinesis (Streams, Firehose, Analytics)
4. Monitoring & Observability: OpenSearch (OKK Stack), DataDog, PagerDuty, CloudWatch
5. Security & Compliance: wiz.io, CloudTrail, GuardDuty, SecurityHub, Wazuh, AWS Config
6. Compute & Containers: ELB/ALB/GLB, AutoScaling, EC2, ECS, Fargate
7. Serverless: API Gateway/Lambda, Aurora Serverless

Responsibilities:

1. Working as DevSecOps/AWS Engineer for an online card payment system that processes millions of transactions daily for 1000+ merchants across 160 currencies, achieving 99.995% uptime
2. Designing, implementing, and securing AWS cloud architectures
3. Developing, configuring, and maintaining infrastructure as code (IaC) based on CloudFormation/CDK with security best practices embedded
4. Designing and implementing secure CI/CD pipelines with integrated vulnerability scanning and compliance checks
5. Performing continuous threat modeling, vulnerability assessments, and implementing mitigation strategies
6. Consulting on, planning, and ensuring the ongoing security and PCI DSS compliance of new and existing projects
7. Conducting detailed postmortem analysis, implementing security-oriented countermeasures, and proactive improvement actions
8. Preparing the organization for successful PCI compliance audits through robust security controls and evidence management

Required Experience and Skills:

1. At least 6 years of hands-on DevOps or DevSecOps experience (level dependent on project team’s autonomy)
2. Minimum of 4 years experience specifically designing, implementing, and maintaining secure AWS infrastructure solutions
3. Broad knowledge of AWS services with the ability to identify and implement secure, optimal solutions
4. Solid understanding of security principles and best practices, including infrastructure hardening, incident response, IAM, and network security
5. Long-term commitment—we build a bold team ready to grow, tackle challenges, and celebrate milestones together
6. Willingness to take accountability and ownership of security and operational outcomes
7. Excellent problem-solving skills, particularly in proactively identifying and addressing security risks and operational issues early
8. Strong communication, documentation, and collaboration skills, particularly around security topics
9. Good command of English - working with teams across the world

Nice to have:

1. Familiarity with PCI DSS standards and compliance practices
2. AWS Security Specialty Certification or similar cybersecurity certifications

What We Offer:

1. Remote work with flexible hours (B2B contract)
2. Modern office in the center of Wrocław if needed
3. Independent position with effective onboarding process and opportunity for mastering new skills and gaining knowledge of the international fintech security standards
4. Cooperation with a team of highly trained specialists familiarized with technology and innovative products
5. In the long-term perspective, participating in the DevOps/cloud engineering team extension
6. Unlimited career potential in disruptive fintech environment where traditional finance meets the new technology