DevSecOps Engineer

We are looking for a DevSecOps Engineer to join our team and help maintain and improve a secure cloud infrastructure on AWS. Our applications run on Kubernetes (EKS), is used for edge protection, and Wazuh serves as our SIEM / HIDS platform.

This role is suited for an engineer with hands-on experience who will work within an existing architecture and established best practices, rather than owning the full system design.

Requirements: AWS / Cloud 2+ years of commercial experience with AWS; Hands-on experience with EKS or other managed Kubernetes platforms; Basic understanding of IAM, VPC, Security Groups, and CloudWatch. Kubernetes / Containers Experience with Kubernetes (deployments, services, ingress); Understanding of Kubernetes RBAC (ability to apply and maintain existing policies); Experience with Docker (building and running containers). Security / Monitoring Experience with Wazuh or other SIEM / security monitoring solutions; Understanding of logging, alerting, and basic HIDS principles; Hands-on experience with (DNS, basic WAF configuration). DevOps / Automation Experience with CI/CD tools (GitLab CI, GitHub Actions); Infrastructure as Code: Terraform; Bash or Python for basic automation tasks. Networking Understanding of HTTP/S, DNS, and TLS; Basic knowledge of cloud networking concepts. Responsibilities: Maintain and enhance CI/CD pipelines with integrated security checks; Support and operate Kubernetes clusters (AWS EKS); Configure and maintain Wazuh (agents, basic rules, alerts, dashboards); Support and optimize services (DNS, basic WAF rules, rate limiting); Deploy and update infrastructure using IaC (Terraform / CloudFormation); Manage access controls (AWS IAM, Kubernetes RBAC); Monitor logs and security alerts and participate in incident response; Apply basic hardening practices for containers and EKS nodes; Collaborate with development teams to ensure secure application deployments; Configure infrastructure according to CIS benchmarks. Nice to Have: Experience with security scanning tools (Burp, Snyk, kube-bench); Familiarity with AWS Security Hub or GuardDuty; Basic understanding of Zero Trust principles; Experience with multi-account AWS environments; Exposure to security policies or compliance controls; Experience with ELK Stack.

What We Offer: Work in a team with established processes and mentoring; Clear growth path toward a Senior DevSecOps Engineer role; Modern cloud-native technology stack (AWS, Kubernetes, Terraform); Flexible work format (remote / hybrid); Competitive compensation based on experience