DevSecOps Engineer

Summary

Join Devoteam Cyber Trust as an experienced DevSecOps Engineer! You will play a crucial role in ensuring the security and efficiency of our infrastructure. Responsibilities include managing and monitoring diverse infrastructure environments, developing and maintaining IaC using tools like Terraform, implementing CI/CD pipelines, collaborating with development teams to integrate security practices, and responding to incidents. You will need a Bachelor's degree in a related field, 5+ years of experience in a similar role, and expertise in various technologies and tools. We offer professional development opportunities and a strong organizational culture.

Requirements

• Bachelor’s degree in Computer Science, Information Technology, or a related field
• Proven experience (5+ years) as a DevSecOps or similar role
• Experience with DevOps and SecOps principles and practices
• Experience with infrastructures, from bare metal to virtual machines and cloud (e.g., AWS, Azure, GCP)
• Experience with containerization technologies (Docker, Kubernetes, Openshift)
• Experience with Infrastructure as Code (IaC) tools (Ansible, Terraform)
• Experience with CI/CD tools (e.g., Jenkins, GitLab CI)
• Experience with code analysis tools (SonarQube or similar)
• Experience with Atlassian tool integrations (Jira, Confluence, Bitbucket)
• Experience with infrastructure monitoring tools (e.g., Prometheus, Grafana, Datadog)
• Experience with scripting languages (Python, Bash)
• Excellent organisational, analytical and problem-solving skills
• Strong sense of ethics, integrity, and responsibility
• Great communication and teamwork skills
• Fluency in Portuguese and high proficiency in English

Responsibilities

• Manage and monitor infrastructures, from bare-metal to virtual machines and cloud environments (e.g., AWS, Azure, GCP)
• Develop and maintain Infrastructure as Code (IaC) using tools such as Terraform and other HashiCorp tools, ensuring integration with OpenShift
• Develop, implement, and maintain CI/CD pipelines to automate build, test, and deployment processes, with a focus on the OpenShift environment
• Collaborate with infrastructure and development teams to integrate security practices (SecOps) throughout the infrastructure and software development lifecycle, utilizing tools like SonarQube while ensuring code documentation and security
• Integrate and manage CI/CD pipelines with Atlassian tools (Jira, Confluence, Bitbucket)
• Respond quickly and effectively to incidents related to infrastructure, applications, and deployments, with a focus on OpenShift
• Implement and manage monitoring and logging solutions to ensure system operation and performance
• Develop and optimize DevSecOps practices and tools, contributing to continuous improvement
• Document processes, including installation protocols and technical specifications (BSDS), to ensure knowledge management
• Stay up to date with the latest technologies and trends, particularly in DevSecOps and OpenShift

Preferred Qualifications

• Relevant certifications, such as ITIL v4 Foundation or higher, are highly valued
• Proficiency in information security principles, cybersecurity best practices, and frameworks, including: ISO 27001
• NIST Cybersecurity Framework
• CIS Top Critical Security Controls
• Experience with HashiCorp tools, such as: Vault
• Consul
• Nomad
• Packer
• Knowledge of JavaScript frameworks
• Understanding of Artificial Intelligence (AI) and Machine Learning (ML) concepts and their application in DevSecOps, covering: Infrastructure
• CI/CD
• Cybersecurity
• Code analysis

Benefits

• Professional development and monitoring talent
• Commitment to our employees' development
• Collaboration in a company that is constantly growing and evolving
• Strong organisational culture: collaboration, sharing, flexibility, integrity and low ego