We are looking for a DevSecOps Engineer with solid technical experience in integrating security into development environments, infrastructure, and CI/CD pipelines.
The ideal candidate will be responsible for defining, implementing, and maintaining DevSecOps practices across various projects, ensuring compliance with security policies and providing specialized technical support in cloud platforms, containers, and automation tools.
Responsibilities include designing and implementing integrated security practices in CI/CD pipelines, securing infrastructure, cloud platforms, and containers with a focus on protection and compliance, managing SAST, SCA, DAST, and IAST tools, and ensuring their proper integration.
The role also involves implementing secret management solutions, IAM, and secure configuration in Cloud environments and Infrastructure as Code, providing technical support, incident response, and problem resolution in DevSecOps environments, and transferring technical knowledge to internal teams through training and mentoring.
Additionally, the candidate will design and maintain security dashboards, alerts, and observability schemes, and collaborate under agile methodologies with multidisciplinary teams.
Requirements:
Academic background in Systems Engineering, Computer Science, Software, Cloud Computing, or related fields is required.
A minimum of 2 years of experience in DevSecOps functions is essential, including security in infrastructure, cloud platforms, and containers (at least 4 projects).
Experience in integrating security into CI/CD pipelines (at least 4 projects) is necessary.
Implementation of secret and credential management tools is required.
Technical support and incident response experience in security is mandatory.
Experience in technical training and knowledge transfer is needed.
Demonstrable experience with SAST/SCA and DAST/IAST tools (at least 2 tools from each category) is required.
Experience with Docker, Kubernetes, container security, and orchestration platforms (minimum of 2 years) is essential.
Experience in defining security policies in Terraform, CloudFormation, or ARM Templates is required.
Familiarity with cloud platforms (AWS, Azure, GCP) and their native security services is necessary.
Configuration of secure pipelines in at least 2 CI/CD platforms (GitLab CI, Jenkins, Azure DevOps, etc.) is required.
Experience in IAM, enterprise environment security, databases, application architecture, and cloud governance is essential.
Benefits:
The position offers 100% remote work from any location in LATAM.
Participation in high-impact projects and cutting-edge technologies is provided.
Opportunities for continuous learning and certifications are available.
An excellent collaborative and multidisciplinary environment is offered.