DevSecOps Engineer

Company Overview

PQA Labs is a pioneer in providing best-in-class post-quantum blockchain solutions for industries and technologies vulnerable to advancements in quantum computing. Our team blends industry insight with forward-thinking approaches to ensure the privacy and security that an ever-evolving digital future demand.

About the Job

We are seeking a versatile and experienced DevSecOps Engineer to join our growing team. In this critical role, you will be responsible for the security, stability, and scalability of our entire cloud and blockchain infrastructure. You will own the end-to-end lifecycle of our platform, from deploying and hardening cloud resources to managing secure code pipelines and deploying smart contracts. This is a hands-on role for a proactive individual who is passionate about building resilient systems and embedding security into every step of the development process.

Responsibilities

Technical Architecture & Development

Cloud Infrastructure Management: Install, configure, and maintain our cloud infrastructure on platforms like Huawei Cloud, AWS or Azure, ensuring high availability and performance. Manage virtual instances, databases (e.g., PostgreSQL, Redis, Kafka), and networking components, including firewalls and VPNs.

System Hardening & Maintenance: Perform regular system and database maintenance, including the timely application of security patches and updates to mitigate vulnerabilities. Implement and enforce security configurations and hardening standards across the platform based on industry best practices like CIS benchmarks.

Security Operations & Auditing: Conduct regular security scans and internal audits using a suite of security tools, including Static Application Security Testing 1(SAST) and Dynamic Application Security Testing (DAST). Perform internal penetration tests before each important public release to identify and remediate security weaknesses in our applications and infrastructure.

Application & Code Security: Integrate security tools into our CI/CD pipeline to automate vulnerability detection. Review application source code for security flaws and work with developers on code sanitization and remediation efforts.

Process & Operations

CI/CD & Release Management: Own and improve our CI/CD pipelines for automated builds, testing, and deployments across all environments (Development, QA, Production). Manage the deployment of application releases, hotfixes, and infrastructure changes in a safe and repeatable manner.

Blockchain Operations: Manage the secure deployment lifecycle of smart contracts to blockchain networks (e.g., Ethereum, Polygon, etc.). Handle key management, environment configuration, and post-deployment monitoring for our on-chain assets.

Job Requirements

Mandatory Qualifications

Bachelor's degree or higher in Computer Science, Engineering, or a related field.

Proven experience in a DevOps, SRE, or Cloud Engineering role with a strong focus on security

Skills Required

1) Cloud & Infrastructure:

Hands-on expertise with at least one major cloud provider (AWS, Huawei, or Azure).

Proficiency with Infrastructure as Code (IaC) tools like Terraform or Ansible.

Strong experience with Linux systems administration and database management (SQL and/or NoSQL).

2) Security:

Demonstrable experience with SAST/DAST tools (e.g., SonarQube, OWASP ZAP, Checkmarx, Semgrep) and understanding how to interpret their results.

3) CI/CD & Automation:

Solid experience building and managing CI/CD pipelines using tools like Jenkins, GitLab CI, or GitHub Actions. Strong scripting skills (e.g., Bash, Python, Go).

4) Blockchain:

Familiarity with the fundamentals of blockchain technology and experience with smart contract deployment tools (e.g., Hardhat, Truffle).

Good-to-have Qualifications

Experience with containerization and orchestration technologies (Docker, Kubernetes).

Professional security certifications such as CISSP, OSCP, or cloud-specific security certifications.

Experience conducting manual penetration tests.

Deep knowledge of EVM-based blockchains and Solidity smart contracts.

Experience with security monitoring and SIEM tools.

Knowledge of compliance frameworks like SOC 2 or ISO 27001.

The Successful Applicant

A proactive, security-minded individual passionate about building resilient systems.

Versatile and able to own the end-to-end platform lifecycle.

Strong analytical and problem-solving skills.

Excellent teamwork and communication abilities.

Have strong principles and high integrity.

Immediate Availability preferred.

Notes to Applicants

This is a hands-on role requiring both strategic thinking and technical execution.

We offer a competitive salary and benefits package, flexible work arrangements, and a generous budget for professional development.

Join us to work on cutting-edge technology in the rapidly growing Web3 space within a collaborative team.