Lead DevSecOps Engineer

About Playson

Founded in 2012, Playson is a leading iGaming supplier recognized worldwide. We provide our partners with a high-end, microservice-based Platform-as-a-Service capable of processing billions of financial transactions daily. Our global infrastructure is designed for cross-regional performance, with a relentless focus on latency reduction and flawless player experience, regardless of bandwidth or connectivity.

We are now building a Platform & Cloud Security function and are looking for the first hire to launch and lead it. This is a rare opportunity to set the standards from scratch and shape how security is embedded into a modern, high-load, cloud-native environment.

Key Responsibilities

- Establish the DevSecOps function at Playson, defining best practices and security standards across the Platform Tribe.

- Integrate security into CI/CD pipelines (SAST, DAST, dependency scanning, container scanning).

- Harden infrastructure and runtime environments (Linux, Docker, Kubernetes/EKS, RBAC).

- Design and enforce cloud security controls in AWS (IAM least-privilege, GuardDuty, Security Hub, encryption at rest/in transit).

- Define and maintain IaC security policies (Terraform/Terragrunt, drift detection, policy-as-code).

- Implement and manage secrets management solutions (Vault, AWS Secrets Manager).

- Build centralized security monitoring & alerting (Datadog, ELK, CloudWatch, SIEM/SOAR).

- Lead vulnerability management and threat modeling practices.

- Automate workflows through scripting (Python, Bash).

- Partner with backend, infrastructure, and platform engineers to embed security in design & delivery.

- Contribute to compliance readiness (ISO 27001, GDPR, PCI-DSS).

- Act as a security subject-matter expert, mentoring engineers and raising awareness.

- Continuously evaluate and implement new security tools and approaches.

Requirements

- 5+ years in Security Engineering / DevSecOps roles, with proven success delivering sec...