Remote DevSecOps Engineer

Currently, we are looking for a DevSecOps Engineer with a strong focus on security to join our team. The right candidate should have over six years of experience, be skilled in automating infrastructure and processes, and have a strong interest in cybersecurity. In this role, you will manage cloud infrastructure (mainly AWS), use Terraform for Infrastructure as Code (IaC), and help build secure, scalable, and reliable software deployment pipelines. You must be proficient in Python, and experience with Go is a plus.

Design, deploy, and maintain highly scalable, secure, and reliable AWS environments using best DevOps practices.
Implement security policies, practices, and tools across the CI/CD pipeline, ensuring security is built into the infrastructure at all stages.
Build and manage infrastructure using Terraform, ensuring repeatable, automated, and version-controlled infrastructure deployments.
Develop and maintain automation scripts in Python (or Go) to streamline operational tasks and enhance system security and performance.
Create, optimize, and secure CI/CD pipelines, ensuring automated testing, code review, and deployment processes are integrated into all development workflows.
Implement robust monitoring, logging, and alerting systems to proactively identify and resolve issues, with a particular focus on security events.
Work closely with development teams to instill a security-first culture, guide best practices in secure coding, and mentor junior team members on security-focused DevOps practices

Qualifications/Experience:
6+ years of experience in DevOps or DevSecOps roles, with a demonstrated focus on security best practices.
Proficiency in Python (Go is a plus) for automation, scripting, and tool development.
Hands-on experience with AWS services (EC2, S3, RDS, Lambda, etc.) and the ability to architect secure and efficient cloud solutions.
Strong experience using Terraform for automating cloud infrastructure.
Understanding of security concepts like firewalls, encryption, IAM, and network security, along with experience with security tools such as vulnerability scanners, IDS/IPS, or SIEM systems.
Experience in building and securing CI/CD pipelines using tools like Jenkins, GitLab CI, CircleCI, or similar.
Familiarity with Docker and Kubernetes, with a focus on securing containerized applications.
Proficiency in Git for version control and collaboration.