Loading...

Infrastructure Security Engineer/DevSecOps

Plata Card

Information Security Team:

We are seeking a highly motivated and experienced DevSecOps Engineer to join our Network & Infrastructure Security team. In this role, you will be focusing on integrating security best practices throughout the entire software development lifecycle (SDLC) for our cloud-native applications and infrastructure. You will work closely with development, infrastructure and security teams to automate security controls and proactively identify and mitigate risks within our AWS and Kubernetes environments. Your expertise will be vital in building secure, scalable, and resilient systems.

Challenges that await you:

  • Security Automation & Integration: Design, implement, and maintain automated security controls and pipelines (CI/CD) within GitLab. This includes static application security testing (SAST), dynamic application security testing (DAST), software composition analysis (SCA), infrastructure as code (IaC) scanning, and container image scanning.
  • Cloud Security (AWS): Implement and enforce security best practices for AWS services, including IAM, VPC, Security Groups, S3, EC2, Lambda, EKS, and other relevant cloud components.
  • Kubernetes Security: Secure Kubernetes clusters and workloads, pod security policies, container runtime security, admission controllers, secrets management, and vulnerability scanning of container images.
  • Service Mesh Security (Istio or similar): Implement and manage security features within a service mesh (e.g., Istio) for traffic encryption, authentication, authorization, and policy enforcement between microservices.
  • Incident Response & Remediation: Implement monitoring rules to detect infrastructure related security incidents and response measures.
  • Threat Modeling & Risk Assessment: Participate in threat modeling exercises and risk assessments for new features and infrastructure changes, providing security recommendations.
  • Security Tooling & Research: Evaluate, recommend, and implement new security tools and technologies to enhance our security posture. Stay abreast of emerging security threats, vulnerabilities, and technologies in the cloud-native landscape.
  • Collaboration & Education: Act as a security advocate, providing guidance and training to development and operations teams on secure coding practices, infrastructure security, and DevSecOps principles.

What makes you a great fit:

  • 1+ years of experience in DevSecOps, Cloud Security, or a related cybersecurity role, with a strong focus on automation and infrastructure security.
  • Extensive experience with AWS(Azure/GCP):  Understanding of AWS/Azure/GCP security services, best practices, and architecture.
  • Proficiency in Kubernetes: Strong knowledge of Kubernetes architecture, security configurations, and deploying secure workloads.
  • CI/CD Pipeline Expertise: Hands-on experience designing, implementing, and securing CI/CD pipelines, preferably with GitLab CI/CD.
  • Infrastructure as Code (IaC): Hands-on experience with IaC tools like Terraform or CloudFormation for secure infrastructure provisioning and management.
  • Service Mesh Knowledge: Experience with Istio or a similar service mesh for securing inter-service communication.
  • Networking Fundamentals: Understanding of network protocols, firewalls, VPNs, and network segmentation in cloud environments.

Your bonus skills:

  • Experience with managing and fine-tuning Web Application Firewall(WAF)
  • Relevant industry certifications (CKA/CKAD/CKS).
  • Familiarity with compliance frameworks (e.g., PCI DSS, GDPR)

Our ways of working:

  • Innovative Spirit: A commitment to creativity and groundbreaking solutions
  • Honest Feedback: valuing open, transparent communication
  • Supportive Team: a strong, collaborative community
  • Celebrating Achievements: recognizing our wins together
  • High-Tech Environment: a team full of smart and revolutionary people who date to challenge the status quo of incumbent finances

Our benefits:

  • Relocation support to one of our hubs — Cyprus, Spain, Georgia, Serbia, or Kazakhstan — with assistance for the employee and their family
  • Flexible work from one of our offices or remote
  • Healthcare Coverage
  • Education Budget: Language lessons, professional training and certifications
  • Wellness Budget: Mental health and fitness activity reimbursements
  • Vacation policy: 20 days of annual leave and paid sick leave

To apply for this job please visit careers.bancoplata.mx.

Working in Worldwide

    Market context

    • Similar listings in Worldwide 1

    Job details above are provided by the employer/source. The sections on this page are compiled from public data sources with AI assistance.

    Accommodations: if you need a workplace accommodation to apply for or perform this job, see ADA.gov or EEOC.gov for guidance on your rights and how to request one.

    Add application deadline to calendar

    Keep exploring on Get A Job.ai

    Not quite the right fit? Your next opportunity is a click away.

    Hiring instead? Post a job and reach candidates searching right now.