Senior DevSecOps Analyst

This is a fully remote position, open to applicants anywhere in the world.

📋 Description

• Oversee and enhance cloud infrastructure to ensure availability, security, and cost-effectiveness across AWS and GCP environments.

• Create and sustain infrastructure-as-code (IaC) automations using Terraform/Terragrunt, focusing on modules, state management, and the standardization of best practices.

• Develop and maintain automations, scripts, and integrations utilizing APIs, CLIs, and programming languages like Python or Shell.

• Design and refine CI/CD pipelines incorporating quality and security stages in alignment with Cyber Security guidelines.

• Act as a liaison among Development, Operations, and Cyber Security teams for vulnerability analysis and remediation efforts.

• Implement and improve platform observability through dashboards, alerts, and event traceability.

• Independently lead internal projects, producing technical documentation and runbooks.

• Provide support to Engineering, QA, Information Security, and governance teams.

⛳️ Requirements

• Education: Bachelor's degree completed or in progress in Computer Science, Information Systems, Networks, or related fields — or equivalent and demonstrated experience.

• Advanced expertise in AWS and its core services: EC2, ECS, EKS, RDS, S3, VPC, IAM, Security Hub, GuardDuty, CloudTrail, CloudWatch, Cognito, KMS, and Secrets Manager.

• Familiarity with GCP, including experience with the platform’s essential infrastructure and security services.

• Strong, proven experience with Terraform and Terragrunt, emphasizing reusable modules, remote state management, and IaC best-practice standardization.

• Experience in container infrastructure, specifically with Docker and orchestration using Kubernetes or ECS.

• Familiarity with CI/CD tools such as Bitbucket Pipelines, GitHub Actions, or equivalent.

• Experience using observability tools for dashboards, alerts, and log analysis (e.g., New Relic, Datadog, ELK, or similar).

• Proficiency in at least one automation language, such as Python or Shell/Bash.

• Linux: knowledge in administration, permissions, networking, and troubleshooting.

• Understanding of security protocols and concepts including SSO, OAuth2/OIDC, digital certificates, and TLS/HTTPS.

• Ability to interpret and respond to vulnerability findings (CVEs, SAST/DAST findings).

🏝️ Benefits

• Meal/food allowance credited to Flash card.

• Medical and Dental plan (SulAmérica).

• Total Pass (transportation benefit).

• Home office allowance on Flash card.

• Mental health support (VOLL Care).

• Education assistance (VOLL Education).

• Group life insurance.

• Maternity leave: 6 months.

• Paternity leave: 30 days (Our parental leave policy equally applies to same-sex couples).

• Vacation entitlement after 6 months.

• Day off.