Senior DevSecOps Engineer

Ciklum is looking for a Senior DevSecOps Engineer to join our team full-time in Ukraine.

We are a custom product engineering company that supports both multinational organizations and scaling startups to solve their most complex business challenges. With a global team of over 4,000 highly skilled developers, consultants, analysts and product owners, we engineer technology that redefines industries and shapes the way people live.

About the role:

As a Senior DevSecOps Engineer, become a part of a cross-functional development team engineering experiences of tomorrow.

The DevSecOps Engineer is a foundational role in our client project, responsible for architecting and maintaining the high-security infrastructure required for an enterprise-grade Agent Development Platform (ADP). You will be tasked with building the secure "sandbox" where autonomous agents live, ensuring zero-trust connectivity and managing the specialized data stores that power agentic reasoning. You will lead the setup of the AWS production environment and the implementation of Firecracker MicroVMs to provide isolated, ephemeral runtimes for agents. You are the guardian of the platform's "Egress Controls," ensuring that while agents can reason over proprietary data, they can never exfiltrate it.

Responsibilities:

• Agent Sandboxing & Isolation: Implement and manage Firecracker MicroVMs (or restricted Kubernetes/Docker environments) to ensure agents execute in strictly isolated, secure runtimes.
• Secure Data Infrastructure: Provision and optimize the platform's multi-layered data stack, including PostgreSQL (OLTP), ChromaDB/PGVector (VectorStore), and GraphDB (Neo4j) for relational knowledge mapping.
• Event Orchestration: Build and manage high-performance Event Streams (AWS SQS, Event Bridge, or Kafka) to handle agent-to-agent communication and Human-in-the-Loop (HITL) escalation triggers.
• Infrastructure as Code (IaC): Automate the provisioning of AWS cloud infrastructure and Kubernetes clusters using industry-standard tools.
• Security & Identity Integration: Implement WorkOS for B2B identity management and multi-tenancy, ensuring strict logical separation of tenant data and configurations.
• Network Hardening: Design and enforce strict egress firewalls and proxy-only outbound routing to prevent data exfiltration by autonomous agents.

Requirements:

• Cloud & Containers: Deep expertise in AWS, Kubernetes, and container security; proven experience with Firecracker MicroVMs is highly desirable.
• Database Management: Hands-on experience managing and scaling Vector Databases (Chroma, PGVector) and Graph Databases for AI applications.
• Security First Mindset: Strong understanding of zero-trust architecture, OWASP principles, and secure design for AI systems.
• Messaging & Events: Proficiency in managing event-driven architectures and streaming platforms for real-time data processing.
• Automation: Advanced scripting skills (Python, Bash) and a track record of implementing automated security gates in CI/CD pipelines.
• Workflow Orchestration: Experience with Temporal for managing long-running, multi-stage agentic workflows.

Desirable:

• Compliance: Experience preparing infrastructure for SOC 2, ISO 27001, or GDPR readiness.

• Agentic Frameworks: Familiarity with LangSmith or Langfuse for observability and tracing of agent workloads.

What`s in it for you?

• Strong community: Work alongside top professionals in a friendly, open-door environment
• Growth focus: Take on large-scale projects with a global impact and expand your expertise
• Tailored learning: Boost your skills with internal events (meetups, conferences, workshops), Udemy access, language courses, and company-paid certifications
• Endless opportunities: Explore diverse domains through internal mobility, finding the best fit to gain hands-on experience with cutting-edge technologies
• Flexibility: Enjoy radical flexibility – work remotely or from an office, your choice
• Care: We’ve got you covered with company-paid medical insurance, mental health support, and financial & legal consultations

About us:

At Ciklum, we are always exploring innovations, empowering each other to achieve more, and engineering solutions that matter. With us, you’ll work with cutting-edge technologies, contribute to impactful projects, and be part of a One Team culture that values collaboration and progress.

As one of Ukraine’s largest IT companies and a top employer recognized by Forbes, we’ve spent over 20 years delivering meaningful tech solutions. We proudly support diverse talent and military veterans, recognizing their unique skills and perspectives they bring to shaping the future.

Explore, empower, engineer with Ciklum!

Interested already? We would love to get to know you! Submit your application. We can’t wait to see you at Ciklum.

#LI-NO1