DevSecOps Engineer
As a DevSecOps Engineer, you will be supporting the delivery of secure coding initiatives, combining offensive and defensive methodologies to ensure top quality software. Your work will help us excel by delivering a secure product to build trust and stay ahead of the game. We are on a thrilling journey of growth and innovation, and we need passionate, driven individuals to join us. At DigiOutsource, every day is action-packed, and we expect you to bring your A-game. In return, you’ll find a supportive environment where your skills can flourish, and your career can soar.
- Partner with internal teams to ensure timely remediation of prioritized vulnerabilities
- Conduct application security testing to identify and mitigate vulnerabilities
- Oversee the operation and continuous improvement of Software Composition Analysis (SCA), Static Application Security Testing (SAST), and Dynamic Application Security Testing (DAST) tools.
- Develop, maintain, and enhance Software Bills of Materials (SBOMs) to manage software supply chain risks
- Establish and evolve application security maturity frameworks (e.g., OWASP SAMM) to guide program development
- Drive secure cloud operations by aligning infrastructure monitoring with best practice frameworks and cloud provider benchmarks
- Embed and continuously monitor security services in CI/CD workflows to enable automated security checks throughout the development lifecycle
- Maintain and upgrade existing security systems to ensure optimal performance and protection
- Foster a security-first mindset within DevOps and development teams through collaboration and awareness initiatives
- 3+ years in DevOps, Security Engineering, or related roles (required)
- Background in software development or secure coding (required)
- Strong experience with CI/CD tools (e.g., Jenkins, GitLab CI/CD) (required)
- Strong verbal and written communication skills, with the ability to convey complex ideas clearly and effectively (required)
- Proficiency in scripting languages (e.g., Python, Bash) (required)
- Experience working collaboratively in cross-functional teams, with a focus on achieving shared goals (required)
- Expertise in managing multiple projects simultaneously, with a track record of delivering on time and within scope (required)
- Exceptional attention to detail, ensuring high standards of quality in all outputs (required)
- Ability to adapt quickly to changing environments and priorities, maintaining effectiveness in dynamic situations (required)
- Experience with Application security testing and vulnerability identification and prioritization (required)
- Experience with container security and vulnerability detection and remediation (required)
- Experienced in working with major cloud platforms, such as AWS and Azure (required)
- Working knowledge of Infrastructure as Code (IaC) tools such as Terraform and AWS CloudFormation (required)
- Solid grasp of security best practices and compliance frameworks (e.g., ISO, SOC2, NIST) (required)
- Passion for collaboration with external parties to ensure secure product lifecycles (preferred)
- Familiarity with security tools (e.g., Snyk, SonarQube, OWASP ZAP) (preferred)
- Highly self-driven with a strong focus on achieving measurable outcomes (preferred)
- Driven by curiosity and a proactive approach to staying current with emerging technologies and security trends (preferred)
- Hands-on experience with application security testing tools such as Burp Suite for manual and automated vulnerability discovery (preferred)
- We’re dedicated to your supergrowth. Our comprehensive learning and development programmes give you a range of resources and opportunities to expand your skills and advance your career.
- Your hard work and achievements won’t go unnoticed. Our innovative Performance Tool ensures you receive regular, constructive feedback, helping you to continuously improve and reach your full potential.
- Our Employee Assistance programme offers a variety of benefits which you and your family can benefit from.
- Free Daily Meal
- Free Massages On-site
- Free On-Site Gym
- Group Life Cover
- Funeral Fund Benefit
- Financial Services Assistance
- Curro School Fees Benefit
- Income Continuation Benefit
- Leadership Training
- Referral Bonus
- Medical Aid Subsidy
- Free Sleep Coaching
- On-site Barista
- Retirement Annuity Subsidy
- Work from home allowance
- Team socials
DigiOutsource is a global iGaming technology and services company and part of Super Group (SGHC), the holding company behind the Betway and Spin brands. Headquartered in Cape Town, South Africa, with offices in London and Portugal, it provides software development, digital marketing, business intelligence, design and communications services that power leading online gaming brands. The company employs around 1,200 people across multiple continents. DigiOutsource was formed from the merger of the ForwardSlash and SpeakUp Communications businesses and operates as a key technology hub within Super Group.
