Devsecops Platform Engineer

Summary

Join Devoteam Cyber Trust, a cybersecurity specialist, and contribute to securing the tech journey of large and medium-sized companies. As a DevSecOps Engineer, you will design and implement infrastructure solutions, containerized solutions, and IaC, primarily using Terraform/Terragrunt and Ansible. You will also develop and maintain CI/CD pipelines, collaborate with teams to integrate cybersecurity practices, and implement comprehensive logging, monitoring, and alerting solutions. This role requires extensive experience in on-premises OpenShift and Kubernetes environments and strong DevOps, SecOps, and GitOps understanding. The company offers professional development opportunities and a collaborative work environment.

Requirements

• Hold a Degree in Computer Engineering, Information Technology or a related field
• Have proven experience (+5 years) as a DevSecOps Engineer or similar role, with significant experience in on-premises environments
• Possess a strong understanding of DevOps, SecOps and GitOps principles and practices, with a focus on on-premises infrastructures
• Have extensive experience with on-premises infrastructure management, including Linux systems and provisioning through IaC
• Have deep experience with containerisation technologies, specifically OpenShift, Docker, and Kubernetes, including the use of Kubernetes Operators
• Have experience with OpenShift specific tools such as Harbor, ACS (Advanced Cluster cybersecurity), Argo CD (GitOps), and ACM (Advanced Cluster Management)
• Have proven experience with IaC tools such as Terraform / Terragrunt and Ansible for infrastructure automation, with a focus on on-premises infrastructures
• Have proven experience implementing and managing CI/CD pipelines with Jenkins / CloudBees, Azure DevOps for containerised applications on OpenShift and Kubernetes
• Have experience with artefact repositories such as Artifactory and XRay from JFrog, and Nexus from Sonatype
• Have experience with additional HashiCorp tools such as Vault, Consul, Nomad and Packer
• Have experience with testing automation frameworks, code analysis and cybersecurity scanning tools such as SonarQube
• Have proven experience as an administrator, manager, and operator of Vault (HashiCorp) and SonarQube, including creating pipelines to build and deploy it across multiple environments, managing its CI/CD pipelines, configurations, and security controls
• Have hands-on experience with infrastructure logging, monitoring, and alerting tools relevant to OpenShift and Kubernetes such as Prometheus, Grafana, Loki and Alertmanager
• Be proficient in scripting languages such as Python and Bash
• Have familiarity with Scrum or Agile methodologies
• Have experience with the Atlassian suite of tools (Jira, Confluence, Bitbucket)
• Have experience working in GxP regulated environments and understanding GxP requirements
• Possess excellent organisational, analytical, and problem-solving skills
• Have a strong sense of ethics, integrity, and responsibility, particularly in regulated environments
• Possess excellent communication and teamwork skills, including the ability to collaborate effectively with development and infrastructure teams
• Be fluent in Portuguese and have a moderate to high level of proficiency in English

Responsibilities

• Design and implement infrastructure solutions, ensuring alignment with application requirements and cybersecurity best practices, with a focus on on-premises infrastructures
• Design, implement, and maintain containerised solutions on OpenShift, Docker and Kubernetes, including the use of Kubernetes Operators, with a focus on on-premises infrastructures
• Design, develop, and maintain infrastructure as code (IaC), with a focus on on-premises infrastructures, primarily using Terraform / Terragrunt and Ansible, to manage infrastructure with a strong focus on OpenShift and Kubernetes environments
• Develop, implement, and maintain CI/CD pipelines specifically tailored for on-premises OpenShift and Kubernetes deployments, automating build, test, and deployment processes, with a focus on Jenkins and integrating with artefact repositories such as Artifactory, JFrog Xray, and Nexus
• Collaborate with infrastructure and development teams to integrate cybersecurity practices (SecOps) throughout the infrastructure and software development lifecycle, ensuring documentation and cybersecurity within the OpenShift and Kubernetes context
• Develop and optimise DevSecOps practices and tools on the environments, contributing to continuous improvement by leveraging testing automation frameworks, code analysis tools such as SonarQube, and other cybersecurity scanning tools
• Implement and manage comprehensive logging, monitoring, and alerting solutions, such as Prometheus, Grafana, Loki, and Alertmanager to ensure system operation, performance, and proactive incident detection within the OpenShift and Kubernetes ecosystem
• Respond quickly and effectively to incidents related to infrastructure, applications, and deployments, with a specific focus on OpenShift and Kubernetes on-premises environments
• Document processes, including installation protocols, technical specifications (BSDS), and GxP relevant documentation, to ensure knowledge management and compliance
• Keep up to date with the latest technologies and trends in DevSecOps, with a strong emphasis on on-premises OpenShift and Kubernetes

Preferred Qualifications

• Hold relevant certifications, such as ITIL v4 Foundation or higher
• Hold relevant OpenShift/Kubernetes certifications, such as CKA, CKS, Red Hat Certified Specialist in OpenShift
• Possess proficiency in information cybersecurity principles, cybersecurity best practices, and frameworks such as ISO 27001, NIST Cybersecurity Framework and CIS Top Critical cybersecurity Controls
• Have knowledge of Javascript frameworks
• Have knowledge of Artificial Intelligence and Machine Learning concepts, and their application in DevSecOps within on-premises environments, including infrastructure, CI/CD, cybersecurity, and code analysis

Benefits

• Professional development and monitoring talent
• Commitment to our employees' development
• Collaboration in a company that is constantly growing and evolving
• Strong organisational culture: collaboration, sharing, flexibility, integrity and low ego