Infrastructure Security Engineer / DevSecOps
New
P
Plata CardInformation Security
WorldwideFull-TimeMiddle
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 1+ years of experience
- Required Skills
- AWSKubernetesTerraformCloudFormation
Requirements
- 1+ years of experience in DevSecOps, Cloud Security, or cybersecurity with a focus on automation.
- Extensive experience with AWS, Azure, or GCP security services and architecture.
- Strong knowledge of Kubernetes architecture and secure workload deployment.
- Hands-on experience designing and securing CI/CD pipelines, specifically GitLab CI/CD.
- Practical experience with Infrastructure as Code (IaC) tools such as Terraform or CloudFormation.
- Experience with service mesh technologies like Istio for microservices communication security.
- Solid understanding of network protocols, firewalls, VPNs, and network segmentation.
- Commitment to innovative security practices and DevSecOps principles.
Responsibilities
- Design, implement, and maintain automated security controls and CI/CD pipelines (SAST, DAST, SCA, IaC scanning, and container image scanning).
- Implement and enforce security best practices for AWS services such as IAM, VPC, S3, EC2, Lambda, and EKS.
- Secure Kubernetes clusters, pod security policies, runtime security, admission controllers, and secrets management.
- Implement service mesh security (e.g., Istio) for encryption, authentication, authorization, and policy enforcement.
- Develop monitoring rules for infrastructure security incidents and perform incident response.
- Lead threat modeling and risk assessments for new features and infrastructure changes.
- Evaluate and implement new security tools to enhance cloud-native security posture.
- Provide guidance and training on secure coding and infrastructure security to cross-functional teams.
View Full Description & ApplyYou'll be redirected to the employer's site