Infrastructure Security Engineer / DevSecOps

New
P
Plata CardInformation Security
WorldwideFull-TimeMiddle
Salary not disclosed
Apply NowOpens the employer's application page

Job Details

Experience
1+ years of experience
Required Skills
AWSKubernetesTerraformCloudFormation

Requirements

  • 1+ years of experience in DevSecOps, Cloud Security, or cybersecurity with a focus on automation.
  • Extensive experience with AWS, Azure, or GCP security services and architecture.
  • Strong knowledge of Kubernetes architecture and secure workload deployment.
  • Hands-on experience designing and securing CI/CD pipelines, specifically GitLab CI/CD.
  • Practical experience with Infrastructure as Code (IaC) tools such as Terraform or CloudFormation.
  • Experience with service mesh technologies like Istio for microservices communication security.
  • Solid understanding of network protocols, firewalls, VPNs, and network segmentation.
  • Commitment to innovative security practices and DevSecOps principles.

Responsibilities

  • Design, implement, and maintain automated security controls and CI/CD pipelines (SAST, DAST, SCA, IaC scanning, and container image scanning).
  • Implement and enforce security best practices for AWS services such as IAM, VPC, S3, EC2, Lambda, and EKS.
  • Secure Kubernetes clusters, pod security policies, runtime security, admission controllers, and secrets management.
  • Implement service mesh security (e.g., Istio) for encryption, authentication, authorization, and policy enforcement.
  • Develop monitoring rules for infrastructure security incidents and perform incident response.
  • Lead threat modeling and risk assessments for new features and infrastructure changes.
  • Evaluate and implement new security tools to enhance cloud-native security posture.
  • Provide guidance and training on secure coding and infrastructure security to cross-functional teams.
View Full Description & ApplyYou'll be redirected to the employer's site
View details
Apply Now