Вакансії

Знайдіть роботу своєї мрії в екосистемі Laravel

#Laravel #PHP #REST API #MySQL #Docker #CI/CD #Git #JavaScript #AWS #Redis #SQL #Vue.js

Full-time 1 дн. тому

Senior DevSecOps

TrueLabel Віддалено За результатами співбесіди

🎯 Role Overview TrueLabel is an iGaming platform running a PHP/Laravel monolith plus a suite of microservices (game, payment, bank, bonus, loyalty) behind a BFF, deployed on AWS/EKS via GitLab CI and Werf. We’re looking for a Senior DevSecOps Engineer to embed security into every stage of our SDLC - from code commit to production - and to own our shift-left security tooling. You’ll work at the intersection of development, infrastructure and security, making the secure path the easy path for 50+ engineers across multiple brands. This is a hands-on role with strong ownership: you set the standards, build the guardrails, and keep a high-velocity delivery pipeline (** PR → Prod ≤ 2 days**) safe at scale. 👤 Our Criteria 5+ years in DevOps / SRE / DevSecOps / Cyber Security, with at least 2 years focused on security; Deep hands-on AWS (** IAM, VPC, KMS, Secrets Manager**) and Kubernetes/EKS Security (** RBAC, Network Policies, Pod Security, Admission Controllers**); Strong CI/CD Security expertise - GitLab CI, SAST, DAST, SCA, Secrets Scanning, Container/Image Scanning, IaC Scanning; Experience with a unified Cloud Security / CNAPP Platform (Wiz.io or equivalent - Prisma, Aqua, Snyk, Trivy, etc.); Solid Infrastructure-as-Code: Terraform, Helm/Werf, GitOps workflows; Practical knowledge of OWASP Top 10, Threat Modeling, Vulnerability Management and remediation prioritization; Comfortable reading and reasoning about application code (** PHP/Laravel** is a strong plus) to give meaningful security feedback; Bash + Python or Go. ⚙️ Your Tasks Own and evolve Shift-Left Security Tooling across GitLab CI - SAST, DAST, SCA, Secret Detection, Container & IaC Scanning - with sane gating that doesn’t block delivery; Roll out and operate Wiz.io; triage findings, define policies, drive remediation with dev teams; Harden AWS/EKS: IAM Least Privilege, Network Segmentation, Secrets Management, Runtime Security; Embed security into the SDLC - Threat Modeling, secure-by-default templates, security reviews of architecture changes; Build Vulnerability Management Process: detection → prioritization → SLA-based remediation tracking; Define and maintain Security Standards & Runbooks; Partner with engineering to keep PR → Prod Lead Time Low without trading away security; Lead Security Incident Response, post-mortems and preventive follow-ups; Mentor engineers and raise the overall Security Maturity of the organization. ⭐ Nice to Have iGaming / FinTech / High-Load Production experience and related compliance exposure (** PCI DSS**, GDPR); Werf experience specifically (our deploy tool); Kafka / Event-Driven Architecture Security; Experience securing a Monolith-to-Microservices Migration; Certifications: AWS Security Specialty, CKS, OSCP or similar; Experience building Security Awareness / Security Champions Programs. 💼 Our Offer Flexible Work Setup - work remotely or from the office, we focus on results, not location; Support for a comfortable work environment - we compensate Coworking Expenses and EcoFlow Power Stations to help our team stay productive during power outages in Ukraine; Unlimited Vacation and Sick Leave, because we trust our people to manage their time responsibly; Relocation Support for team members who want to move; Regular Performance-Based Bonuses that reward individual and team impact; Learning Support - we cover 50% of Professional Courses and Development Programs; Language & Wellbeing Support - we cover 50% of English Classes and Psychological Consultations; Career Growth Opportunities - we prioritize Internal Promotions and Development; Team Culture That Actually Feels Like One - regular gifts, company merch, and team events throughout the year; Real Impact - we are small enough for every voice to be heard and big enough to turn great ideas into action quickly. Відгукнутись на вакансію

#Microservices #AWS #Kubernetes #EKS #GitLab CI

42

Full-time 1 дн. тому

Fullstack Developer

SQRD.tech Віддалено За результатами співбесіди

Format: Remote Location: Poland About the Project We are looking for a Fullstack Developer with a strong focus on system engineering, CMS architecture, cloud deployment models, and DevOps practices. The ideal candidate has experience building secure, scalable, and highly automated platforms that support enterprise websites and content management environments. This role combines full-stack development with infrastructure, cloud, and automation responsibilities. Responsibilities Develop and maintain full-stack web applications and enterprise platforms Design and implement backend solutions using PHP and modern frameworks Build and maintain frontend applications using modern JavaScript frameworks Contribute to CMS architecture and content management solutions Deploy and manage applications in cloud environments Implement and maintain CI/CD pipelines and infrastructure automation Optimize application performance, scalability, and reliability Ensure secure coding practices and compliance with security standards Collaborate with cross-functional teams following Agile and DevOps methodologies Support and improve platform stability, monitoring, and operational processes Requirements Proven commercial experience as a Fullstack Developer with a solid understanding of backend, frontend, and infrastructure development Strong expertise in PHP and hands-on experience with frameworks such as Laravel or Symfony Proficiency in HTML, CSS, JavaScript, and modern frontend frameworks/libraries (React, Vue.js, or Angular) Experience working with cloud platforms such as AWS or Azure Strong understanding of web servers and database technologies Hands-on experience with automation and CI/CD tools such as GitLab CI/CD, Ansible, or Terraform Familiarity with containerization technologies such as Docker and orchestration platforms including AWS ECS or Kubernetes Experience with performance optimization, scalability, and application security best practices Strong communication and collaboration skills Nice to Have Experience with headless CMS solutions, CMS alternatives, or enterprise content management architectures Strong Linux administration background Experience working in DevOps and Agile environments Knowledge of logging, monitoring, and observability practices Experience with centralized logging, high availability, and failover architectures AWS or Azure certifications Tech Stack PHP Laravel Symfony HTML CSS JavaScript React Vue.js Angular CMS Platforms Linux Cloud (AWS / Azure) CI/CD Docker Kubernetes DevOps

#PHP #Laravel #Symfony #HTML #CSS

43

GB

Full-time 10 дн. тому

DevOps Engineer · Eatery Club

GBSFO Віддалено За результатами співбесіди

We are building the infrastructure that powers restaurant ordering, real-time WebSockets, and multi-tenant CDN delivery for thousands of users across Eastern Europe. Our platform runs on AWS EKS with Karpenter-managed node pools, served through CloudFront edge, and backed by MySQL RDS, Redis, and SQS - all provisioned through Terraform across three environments (dev / staging / prod). We are looking for a DevOps Engineer who takes ownership of production systems and builds things that last. Not someone who runs commands - someone who designs the pipeline, writes the module, monitors the result, and fixes the alert at 10PM if needed. This role owns the Kubernetes platform at the cluster level - you will administer node pools, manage upgrades, design topology changes, and support engineering teams deploying PHP/Laravel and Next.js workloads daily. What you’ll do Infrastructure Manage and evolve AWS infrastructure using Terraform - modules, multi-region, Terraform Cloud remote state across workspaces Operate and tune Karpenter NodePools (spot + on-demand) for workload-specific isolation: backend, queue, transaction, websocket, and more Own EKS cluster lifecycle - version upgrades, node group migrations (currently AL2 → AL2023), IRSA, Velero backups CI/CD Maintain Jenkins pipelines (EC2-hosted, x86 + ARM64 agents) with Groovy shared libraries Enforce security gates: Trivy container scanning, Hadolint Dockerfile linting, SonarQube quality checks Manage multi-arch Docker builds and ECR repositories per service Observability Operate the ELK stack - Filebeat, Metricbeat, Elasticsearch, Kibana Maintain Grafana dashboards, Elastic APM, Pyroscope continuous profiling, and OpenTelemetry collector Tune CloudWatch alarms and Falco runtime threat detection Security & Edge Manage CloudFront distributions with WAFv2 - IP allowlists, geo-blocking, rate limiting, origin header verification Administer secrets via AWS Secrets Manager + External Secrets Operator Maintain WireGuard VPN and network-level access controls What we’re looking for Required 3+ years of hands-on DevOps or platform engineering in production Terraform at team scale: modules, remote state, peer review, deployed to production - not just local experiments AWS: EKS, VPC, CloudFront, WAF, RDS, ALB, IAM, Secrets Manager, SQS, S3 - at depth, not surface level Kubernetes: cluster-level thinking - RBAC, ingress, PodDisruptionBudgets, node group management, helm charts, troubleshooting OOMKills and failed rollouts Jenkins or equivalent CI/CD tool with real pipeline ownership Python or Bash scripting for automation Nice to have Karpenter (NodePool / EC2NodeClass design) ELK stack operations (Filebeat, Metricbeat, Elasticsearch index lifecycle) Velero, AWS Backup, disaster recovery playbooks Falco or similar runtime security tooling Experience deploying PHP/Laravel and Next.js workloads in containers Maxwell CDC, RDS Proxy, or Redis operations experience Our stack at a glance Terraform · AWS EKS · Karpenter · Helm · Jenkins · Docker · ECR · CloudFront · WAFv2 · RDS MySQL · ElastiCache Redis · SQS · Elasticsearch · Grafana · Elastic APM · OpenTelemetry · Pyroscope · Falco · Velero · WireGuard Відгукнутись на вакансію

#AWS #Kubernetes #Terraform #Jenkins #Docker

2