DevSecOps Engineerr for NATO

Would you like to join the leading international intergovernmental organization? The Centre for Maritime Research and Experimentation (CMRE) is an established, world-class scientific research and experimentation facility that organizes and conducts scientific research and technology development centred on the maritime domain. It delivers innovative and field-tested science and technology (S&T) solutions to address defence and security needs of the Alliance.

• Design and maintain CI/CD pipelines with integrated security scanning, secrets management, automated testing, and deployment strategies
• Manage containerized infrastructure using Kubernetes, Docker, and infrastructure as code tools (Terraform, Ansible, etc.) across multi-environment deployments
• Participate in Agile ceremonies including sprint planning, daily stand-ups, retrospectives, backlog refinement, code reviews, and technical documentation using AzureDevOps or similar platforms
• Champion security compliance, Test-Driven Development (TDD), and quality assurance practices throughout the development lifecycle, ensuring adherence to industry standards and best practices

• A minimum requirement of a bachelor’s degree at a nationally recognised/certified University in an information systems, physics or electronics related scientific or engineering discipline
• A minimum of 3 years of experience implementing and managing CI/CD pipelines using Azure DevOps, GitHub Actions, or GitLab CI
• Professional experience with container orchestration with Kubernetes
• Professional experience with cloud infrastructure management (with major cloud vendors), and security automation tooling
• Strong experience with Agile/Scrum methodologies, Git workflows, code review processes, and collaboration tools (AzureDevOps, JIRA, GitHub, GitLab, etc.)
• Deep understanding of SDLC phases with proficiency in continuous integration/deployment practices, automated testing strategies, and iterative development approaches
• Solid grasp of SOLID principles, design patterns, and architectural approaches including Domain Driven Design (DDD), Test-Driven Development (TDD), and clean code practices
• Knowledge of secure coding practices, OWASP guidelines, vulnerability management, static/dynamic analysis tools, and commitment to writing maintainable, well-tested code with comprehensive unit, integration, and end-to-end testing
• Strong analytical and debugging skills with ability to break down complex problems, apply appropriate design patterns and refactoring techniques, communicate technical concepts to diverse audiences, and document solutions effectively
• Good level of spoken and written English

If you've read the description and feel this role is a great match, we'd love to hear from you! Click "Apply for this job" to be directed to a brief questionnaire. It should only take a few moments to complete, and we'll be in touch promptly if your experience aligns with our needs.