Senior DevSecOps Engineer

1GLOBAL is a technology-driven global mobile communications provider dedicated to empowering enterprises worldwide to unlock the full growth potential of mobile connectivity. With a best-in-class telecom technology platform, a comprehensive suite of globally viable regulatory licenses, and privileged access to the telecom wholesale market, 1GLOBAL is uniquely positioned to deliver seamless compliance and connectivity solutions. Serving the world’s leading banks, corporations, and digital-first businesses—including neo-banks, travel companies, and payment service providers—1GLOBAL connects over 43 million devices globally. With 2024 full-year revenue exceeding US$100 million and in line to exceed US$200 million in FY25, 1GLOBAL is a profitable business generating significant cash flows to fund its ongoing investments in infrastructure, transformation, and growth. 2024 saw major client wins and marked 1GLOBAL’s evolution from a multi-market telecommunication provider to a global technology-driven mobile connectivity powerhouse.  Established in 2022 by experienced tech founders and entrepreneurs Hakan Koç and Pyrros Koussios, 1GLOBAL is a European technology leader driving digital transformation in the global telecommunications market. It operates as a fully regulated Mobile Virtual Network Operator (“MVNO”) in ten countries and as a regulated telecommunications operator in an additional 31 countries. Headquartered in the Netherlands, with world-class R&D hubs in Lisbon, Berlin, and São Paulo, 1GLOBAL employs over 450 experts across 15 countries.Position OverviewWe are looking for a talented Senior DevSecOps / Cloud Security Engineer to join our Technology Department, with a focus on strengthening and automating our security posture across cloud and hybrid infrastructure. As a DevSecOps / Cloud Security Engineer, you will be responsible for embedding security into every stage of our infrastructure lifecycle, from design to deployment. You will lead the implementation of cloud-native security controls in AWS, harden Kubernetes environments, and drive best practices across CI/CD pipelines. Your role includes continuous vulnerability management, network protection, monitoring for threats, and working with development, DevOps and IP teams to ensure secure-by-default practices. You’ll also proactively identify risks, secure network perimeters, and automate remediation wherever possible.Key responsibilitiesDesign, implement, and evolve scalable cloud security controls across AWS multi-account environments using security-as-code principles Own Kubernetes security architecture including workload isolation, RBAC, pod security standards, and network segmentation Embed security automation into CI/CD pipelines, including image scanning, IaC validation, and policy enforcement Continuously assess cloud and Kubernetes environments for vulnerabilities, misconfigurations, and emerging threats Design and maintain strong IAM and secrets management practices, enforcing least-privilege access Partner with DevOps, Platform, and IP/Network teams to deliver security controls as code and by design Analyze network traffic and security telemetry using flow logs, metrics, and targeted packet inspection where required Ensure alignment with internal security policies and external frameworks (CIS, NIST, ISO 27001, etc.) Produce and maintain clear documentation, including security architectures, runbooks, and incident response playbooks Act as a security champion, driving best practices, awareness, and secure engineering culture across teams RequirementsA minimum of 3+ years Cloud Security / DevSecOps / Infrastructure Security Strong AWS security fundamentals (IAM, KMS, GuardDuty, Config, Security Hub) Solid Linux security and cloud networking fundamentals Hands-on Kubernetes security (RBAC, NetworkPolicies, pod security, image scanning) Infrastructure as Code (Terraform) and Git-based workflows Scripting for automation (Python or Go or Bash) Experience with vulnerability management and container security Security-first mindset with strong troubleshooting skills Experience with WAFs and cloud DDoS protection Comfortable with packet inspection, flow analysis, and traffic monitoring (tcpdump, Wireshark, Suricata, etc.) BenefitsWhy 1GLOBAL? Growth Opportunities: Advance your career in one of the fastest growing telecommunications companies, expanding over 100% year-on-year under the leadership of successful tech entrepreneurs. Major Transaction Exposure: Be in the driver’s seat for transactions that will have an impact on the future telco industry. Work with a Talented Team: From the Board and the Founders to the Senior Management Team, you will collaborate daily with the most capable and renowned external advisors, and constantly being exposed to talented and driven individuals. Dynamic Work Environment: Thrive in a collaborative, fast-paced workplace where innovation is encouraged, and every contribution counts. Professional Development: Work alongside industry experts to enhance your skills and knowledge in a cutting-edge field. International Experience: Gain opportunities to work in different 1GLOBAL offices around the world as you grow within the company. Open Communication Culture: Join a team where your ideas are heard, and open dialogue is encouraged, fostering a supportive and transparent work environment. Get Things Done Attitude: Be part of a results-driven team that values efficiency, creativity, and the drive to make a tangible impact in the industry. 1GLOBAL is an equal opportunity employer, we value your character as much as your talent. Diversity drives our innovation, and we offer a collaborative, dynamic, and international work environment. We are excited for you to join our mission to revolutionise connectivity globally.