Tangem is a high-tech company in the blockchain sector was founded in 2017, headquartered in Zug, Switzerland, with branches in North America, Eastern Europe, and APAC.
Tangem started with the idea of bringing digital assets to the masses using a unique combination of a smartcard-based hardware wallet and mobile applications. Company owns and promotes the technology of hardware cold-wallet for digital assets with secure and simple UX in 220 countries today. Our customers enjoy setup time within 1 minute with the ultimate security level for digital assets on their wallet. Tangem solutions offer multi-support of a growing number of thousands of tokens by a single wallet. SBI Crypto Investment Ltd., the digital asset venture investment company wholly owned by SBI Holdings Inc., has invested $15 million into Tangem in 2019 for mass adoption of blockchain technology.
About the Role
We are looking for a Senior DevSecOps Specialist to join our team. The position involves designing and maintaining security monitoring systems, incident response, vulnerability management, and supporting secure development practices across our cloud infrastructure.
Key Responsibilities:
- Build and maintain the Security Monitoring System for AWS infrastructure
- Identify and respond to security incidents in AWS
- Detect and address vulnerabilities in code and infrastructure
- Provide expert support to development teams on secure development practices
- Ensure the security of backend infrastructure and its public APIs
- Supervise GitHub configuration in terms of secure development processes
- Set up SAST tools (e.g., Software Composition Analysis, secret detection, CI/CD quality gates, etc.)
- Analyze attack vectors and prioritize remediation of project infrastructure vulnerabilities
- Participate in SOC development (alerts, playbooks, etc.)
Requirements:
- 1+ year of experience working with AWS (IAM, cloud architecture, etc.)
- 1+ year of experience securing Kubernetes environments
- 3+ years of relevant work experience
- Experience with Cloudflare products (WAF, API Shield, etc.)
- Experience configuring SAST tools (SonarQube, CodeQL, etc.)
- Experience securing CI/CD processes in GitHub
- Understanding and ability to analyze Infrastructure-as-Code (Terraform, Terragrunt, etc.)
- Experience in identifying and investigating information security incidents
- Understanding of security-by-design principles
What we offer:
- Stability, development, participation in the future unicorn's growth;
- Remote work from anywhere in the world, with a schedule aligned with GMT+3;
- Competitive salary in EURO/USDT;
- 20 working days of paid vacation;
- Birthday presents;
- Compensation for the purchase of necessary technical devices for the work;
- Paid sick leaves.
Feel free to send you CV to Ivan ipanteleev@tangem.com