RemoteLeaf Logo
Log in Sign up

CO - DevSecOps - 234

20 hours, 48 minutes ago
Brazil
Full-time
Senior
DevOps Engineer
DevOps and Infrastructure
AWS CI/CD CrowdStrike Docker GCP Jenkins Kubernetes Splunk Terraform
Apply Now
Thaloz

Thaloz

Thaloz offers end-to-end product development solutions and top-tier LATAM talent to enhance businesses through agile product development, simplifying the journey from idea to market.

Internet Software & Services
51-250
Founded 2020
View All Jobs 10

Description

  • Own platform security and reliability improvements across the GCP environment.
  • Harden identity and network controls, including IAM patterns, service accounts, workload identity, organization policies, and network segmentation.
  • Build security into CI/CD by implementing and enforcing SAST, SCA, secret detection, and container/image scanning.
  • Drive vulnerability management and reduce software supply chain risk across services, dependencies, container images, and build pipelines.
  • Lead threat modeling and security design reviews for new features and major architecture changes.
  • Improve security observability by tuning telemetry, reducing alert noise, and building high-signal detections and dashboards.
  • Lead investigations, coordinate incident response for security alerts and incidents, and drive post-incident improvements.
  • Champion secure SDLC practices through standards, documentation, guardrails, and coaching for product engineering teams.
  • Define and maintain end-user device security standards, including EDR and remote access tooling requirements, and partner with stakeholders to execute them.
  • Support compliance and audit readiness by conducting internal security reviews and helping align practices with SOC 2, GDPR, and NIST frameworks.

Requirements

  • 5+ years of experience across cloud infrastructure and security, such as DevSecOps, platform security, security engineering, or SRE with a strong security focus.
  • Deep hands-on experience with Google Cloud Platform; AWS experience is acceptable as an alternative.
  • Strong hands-on experience with Kubernetes and service networking.
  • Proven Infrastructure-as-Code experience, such as Terraform, and the ability to build reusable automation.
  • Practical experience integrating security into CI/CD workflows, including implementing and enforcing scanners and policy controls.
  • Experience driving vulnerability management and addressing software supply chain risk.
  • Experience leading incident response, including investigation, coordination, post-incident follow-through, and continuous improvement.
  • Strong fundamentals in cloud networking and identity controls, including IAM, service accounts, and workload identity.
  • Comfort partnering cross-functionally and driving work end-to-end in ambiguous areas.
  • Hands-on experience with container tooling and build pipelines, such as Docker and Jenkins.
  • Experience with Istio is preferred.
  • Familiarity with application security scanning tools such as Semgrep, Veracode, or GitHub Advanced Security is preferred.
  • Familiarity with CrowdStrike (EDR) and Splunk (SIEM) is preferred.
  • Experience supporting compliance and audit readiness for SOC 2, GDPR, or NIST, including evidence support, is preferred.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Hyphen Connect

Senior Security Engineer/ Security Manager (Crypto/ Web3)

Hyphen Connect 1-10 staffing & recruiting

A decentralised exchange is hiring a Security Engineer to help build and secure its on-chain trading platform by identifying risks, strengthening controls, and supporting security across the organization.

Singapore Senior Security Engineer
Ansible Blockchain CI/CD DevSecOps Penetration Testing Terraform
3 minutes ago
Databricks

Sr. Staff Security Engineer

Databricks 1K-5K IT Services

Databricks is hiring a Sr. Staff Security Engineer, Incident Response to lead high-impact security investigations and shape the company’s long-term incident response strategy across its cloud and data platform.

Netherlands Europe United Kingdom Denmark Germany Full-time Lead Security Engineer
Apache Spark AWS Azure macOS MLflow SIEM
18 minutes ago
Datadog

Engineering Manager - Security Incident Response (EMEA)

Datadog 5K-10K IT Services

Datadog is hiring an Engineering Manager for its Security Incident Response team to lead incident responders, improve security response operations, and strengthen resilience across the company.

Spain United Kingdom France Ireland Full-time Lead Security Engineer
18 minutes ago
ClickHouse

Senior Cloud Performance Engineer

ClickHouse 51-250 IT Services

ClickHouse is hiring a Cloud Engineering performance engineer to improve the scalability, resilience, and reliability of its cloud-native ClickHouse Cloud Platform for large-scale distributed data workloads.

United Kingdom Full-time Senior Cloud Engineer DevOps Engineer
AWS Azure EC2 GCP Go Java Kubernetes Serverless
1 hour, 18 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers