This position is open exclusively for Ukrainian residents within Ukraine (preferably Kyiv or Lviv). We welcome candidates at all experience levels — from junior to senior.
Cossack Labs is a British cybersecurity firm with R&D centres in Ukraine. We solve security challenges in complex security-sensitive systems end-to-end: we deliver R&D, services, developer tools and bespoke solutions addressing practical risks in high-stakes scenarios.
The Infrastructure & Hardware Team is seeking a DevSecOps superfan as we continue our purposeful, long-term growth, built on a stable and dedicated team.
We take on mission‑critical projects where security is at the heart of everything. If building fortress-level infrastructure excites you, welcome aboard. We put strong emphasis on developing our new team members, offering an extended onboarding period, a clear PDP, and direct involvement from the Department Head from day one. Tell us where you can add value, and we will provide the tools, knowledge, and support for you to succeed. What makes you a great match: * Learning is something you do with intention, not by accident. * Strong communication skills are a must — if you can say it clearly, we can build it quickly. * You actually have different passwords for different websites and applications (bonus points for using MFA). * Strong logical thinking (by the third page of the detective story, you already know who the killer is). * In addition to knowing how things work, you also want to know why they work that way. * Failures don’t stop you — you learn from them to keep moving towards your goal. * You have the persistence to complete the “boring” parts of the job like, writing technical documentation or running tests.
What we expect you to bring to the table: * Good knowledge of Linux systems and networking * Understanding of the main Internet systems and services * Good skills in programming in at least two scripting languages: Bash && (Python || Ruby) * Basic experience in at least one of the non-scripting languages: C/C++/Go/Rust * Understanding of key software development principles and lifecycle * Basic knowledge of main cryptography and security protocols, algorithms, approaches and instruments * Familiarity with Docker and KVM * Sufficient knowledge of English to write perfect documentation and security reports
What will make you stand out? * Familiarity with IaC tools and approaches * Some experience with at least one of PostgreSQL/MySQL
What will you do with all those skills? * Participate in security assessments * Design and implement hardened systems * Enhance SSDLC for our products * Participate in formulating internal procedures, standards, and workflows * Plan, build, and maintain infrastructure * Experiment with unconventional tasks * Collaborate with a team of talented engineers when doing everything above
Hiring Process: * Resume review — 5-7 business days * Questionnaire and your answers review — 3-4 business days * Introduction call with the Head of Infrastructure & Hardware Engineering * Test task — 2 hours working with a virtual machine * Technical interview with several team members * Offer discussion * Years of fantastic collaboration :)
What’s in it for you? * Competitive compensation with a flexible and clear bonus scheme * Hybrid work model: This position allows for a combination of in-office and remote work as needed * Individual development plan based on your preferred growth direction * Paid vacation (21 business days per calendar year) and sick leave * Our real strength is the team: not just roles, but builders creating something meaningful together * Intersection of technologies: Software development, information security, and cloud/on-prem infrastructure engineering. Sometimes, working with unique technologies — we design applied cryptography schemes and techniques and explore novel ways to implement them * Challenges and great variety: In one project, you might be setting up a deployment environment for IoT devices running our code in power plants, and in another project, managing the intricacies of cross-datacenter database replication * Reasonable time budgets and an attitude to build things well — we prioritise building for decades, rather than just until the next release * Conferences, books, courses — we encourage learning and sharing within the community. Our team members contribute a lot to talks, workshops, and blog posts
Please note that you can be a perfect fit even if not everything we’ve outlined above applies to you. If you have any questions, please don’t hesitate to ask — everyone is unique.
