Senior DevSecOps

Summary

Join Encora as a Senior DevSecOps Engineer and be responsible for designing, developing, and maintaining high-quality software solutions. You will collaborate with cross-functional teams, lead technical projects, mentor junior engineers, and improve software development practices. This remote position, based in Colombia, Costa Rica, or Bolivia, requires a Bachelor's degree in a related field, extensive software development experience, and strong skills in CI/CD pipelines and security. You will implement product build requirements, design secure CI/CD pipelines, and automate security tasks. The ideal candidate will have experience with various security tools and possess advanced English skills.

Requirements

• Bachelor’s degree in computer science, software engineering, or a related field
• Extensive experience in software development with a focus on designing and building scalable applications
• Professional/ Advanced English skills
• +5 years of experience
• Demonstrable experience building and maintaining secure CI/CD pipelines
• Knowledge of common security vulnerabilities, attack vectors, and mitigation techniques
• Proficiency in Python/Shell with experience in writing cross-platform scripts with good debugging skills
• Operating System (OS): Strong knowledge of Linux and Windows operating systems
• Version Control: Mastery of version control systems like Git to manage codebase changes and collaborate with development teams effectively
• Continuous Integration/Continuous Deployment (CI/CD): Expertise in setting up, managing, and optimizing CI/CD pipelines using tools like Jenkins, GitLab CI/CD. Understanding how to automate testing, building, and deploying application
• Agile and DevOps Methodologies: Understanding and practical application of Agile methodologies and DevSecOps principles to foster a culture of collaboration, fast iterations, and continuous improvement

Responsibilities

• Responsible for implementing the product build requirements & creating the installers
• Design and implement secure CI/CD pipelines that incorporate security checks at every stage, from code commit to deployment
• Automate repetitive security tasks like vulnerability scanning, security patching, and compliance reporting to improve efficiency
• Integrating and managing security tools like SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), Pen Testing, and SCA (Software Composition Analysis) into the CI/CD pipeline
• Provide input on security best practices and help design secure systems

Preferred Qualifications

Good knowledge of Build systems like cmake & package manager Conan is desired

Benefits

Remote Work