Senior DevSecOps Engineer

About Payoneer

Founded in 2005, Payoneer is the global financial platform that removes friction from doing business across borders, with a mission to connect the world’s underserved businesses to a rising global economy. We’re a community with over 2,500 colleagues all over the world, working to serve customers, and partners in over 190 countries and territories.

By taking the complexity out of the financial workflows–including everything from global payments and compliance to multi-currency and workforce management, to providing working capital and business intelligence–we give businesses the tools they need to work efficiently worldwide and grow with confidence.

About the Role:

We’re looking for a team player with excellent interpersonal skills & service oriented. Creative & out of the box thinker. An autodidact, quick, effective and versatile who’s able to change directions in midstream. Independent & Accountable. As a DevSecOps Engineer at Payoneer, you’ll play a critical role in embedding security throughout the software development lifecycle (SDLC). You’ll help design, implement, and maintain security controls and automations across our CI/CD pipelines, infrastructure, and application stack. 

What you’ll be spending your time on:

• Integrate and maintain security tools across the CI/CD pipeline: 


• SAST (e.g., SonarQube) 


• SCA (Software Composition Analysis) / Dependency Scanning (e.g., Snyk, Trivy, GitHub Dependabot) 


• Secret Detection (e.g., Gitleaks, HashiCorp Vault) 


• Container/Image Scanning (e.g., Aqua, Prisma Cloud, Trivy) 


• Drive security automation and enforcement for: 
    •  Infrastructure as Code (e.g., Terraform) 
    •  Configuration Management (e.g., Ansible, Chef) 
    •  GitOps workflows (e.g., ArgoCD) 
    •  Embed security guardrails and best practices across the SDLC 
    •  Automate compliance checks (e.g., OWASP Top 10, CIS Benchmarks) into development workflows 
    •  Integrate with observability and monitoring systems (e.g., Prometheus, Grafana, ELK, Coralogix) 


• Collaborate cross-functionally with Product, QA, Development, and IT/Ops teams to continuously improve the security posture 


• Participate in on-call rotations for production systems as needed 

 Have you done this kind of stuff?  

• BS degree in computer science, computer engineering, relevant technical discipline or equivalent practical experience 


• At least 6 years’ experience as DevOps/DevSecOps/Security Engineer 


• Experience with CI/CD tools and source control management tools (e.g., Git, Azure DevOps, SonarQube, Artifactory etc...) 


• Proven experience securing CI/CD pipelines 


• Expertise in SCA, SAST, secret scanning, and container security 


• A minimum of 3 years of exposure running production workloads (AWS, Azure or GCP) 


• Hands-on experience with Kubernetes, Docker, and GitOps tooling (ArgoCD or Flux) 


• Proven Scripting capabilities: (e.g. PowerShell/Bash/Python) 


• Experience with logging, SIEM, and monitoring platforms 


• Experience with IAM, secrets management, and compliance frameworks (SOC2, ISO, etc.) 


• High level Linux OS expertise  


• Strong troubleshooting skills 


• Proactive by nature; internal drive for excellence and improvement 

Not a must but a great advantage 

• Experience with relational and non-relational databases (Oracle, PostgreSQL, SQL, MongoDB) Experience with software development and development frameworks


• Experience with event streaming and messaging platforms such as Kafka, RabbitMQ


• Knowledge and understanding Storage and Networking 

#LI-PG1