Devoteam Cyber Trust | DevSecOps Engineer Porto

Devoteam Cyber Trust | DevSecOps Engineer
Porto
Porto, Porto District, Portugal

• Full-time

Company Description

Devoteam Cyber Trust is the Cybersecurity specialist arm of the Devoteam Group. With our 800+ experts located across EMEA, we aim to establish cybersecurity as an enabler of business success rather than a gatekeeper. We leverage an
-
- end approach to Cyber Resilience, Applied Security, and Managed Security services to secure the tech journey of large and
- sized companies from all sectors and industries.

Since 2009, previously known as INTEGRITY, our team based in Portugal is specialised in providing
- edge Managed Security Services that combine its expertise and proprietary technology to consistently and effectively reduce the cyber risk of our clients. The comprehensive service range includes Persistent Intrusion Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. ISO 27001 (Information Security) and ISO 9001 (Quality) certified, PCI-QSA, and member of CREST and CIS - Centre for Internet Security, we provide services to a considerable number of clients, operating in more than 20 countries.

Job Description

We are looking for an experienced Dev
Sec
Ops Engineer to join our team.

The Dev
Sec
Ops Engineer will be critical to ensuring the operations, efficiency and security of the infrastructure, by implementing and managing Dev
Sec
Ops practices.

• Manage and monitor infrastructures, from
  - metal to virtual machines and cloud environments (e. g. , AWS, Azure, GCP).
• Develop and maintain Infrastructure as Code (Ia
  C) using tools such as Terraform and other Hashi
  Corp tools, ensuring integration with Open
  Shift.
• Develop, implement, and maintain CI/CD pipelines to automate build, test, and deployment processes, with a focus on the Open
  Shift environment.
• Collaborate with infrastructure and development teams to integrate security practices (Sec
  Ops) throughout the infrastructure and software development lifecycle, utilizing tools like Sonar
  Qube while ensuring code documentation and security.
• Integrate and manage CI/CD pipelines with Atlassian tools (Jira, Confluence, Bitbucket).
• Respond quickly and effectively to incidents related to infrastructure, applications, and deployments, with a focus on Open
  Shift.
• Implement and manage monitoring and logging solutions to ensure system operation and performance.
• Develop and optimize Dev
  Sec
  Ops practices and tools, contributing to continuous improvement.
• Document processes, including installation protocols and technical specifications (BSDS), to ensure knowledge management.
• Stay up to date with the latest technologies and trends, particularly in Dev
  Sec
  Ops and Open
  Shift.

Qualifications

• Bachelor’s degree in Computer Science, Information Technology, or a related field.

Proven experience (5+ years) as a Dev
Sec
Ops or similar role.

• Experience with Dev
  Ops and Sec
  Ops principles and practices.
• Experience with infrastructures, from bare metal to virtual machines and cloud (e. g. , AWS, Azure, GCP).
• Experience with containerization technologies (Docker, Kubernetes, Openshift).
• Experience with Infrastructure as Code (Ia
  C) tools (Ansible, Terraform).
• Experience with CI/CD tools (e. g. , Jenkins, Git
  Lab CI).
• Experience with code analysis tools (Sonar
  Qube or similar).
• Experience with Atlassian tool integrations (Jira, Confluence, Bitbucket).
• Experience with infrastructure monitoring tools (e. g. , Prometheus, Grafana, Datadog).
• Experience with scripting languages (Python, Bash).
• Excellent organisational, analytical and
  - solving skills.
• Strong sense of ethics, integrity, and responsibility.
• Great communication and teamwork skills.
• Fluency in Portuguese and high proficiency in English.

Nice to have:

• Relevant certifications, such as ITIL v4 Foundation or higher, are highly valued.
• Proficiency in information security principles, cybersecurity best practices, and frameworks, including:
  • ISO 27001
  • NIST Cybersecurity Framework
  • CIS Top Critical Security Controls
• Experience with Hashi
  Corp tools, such as:
  • Vault
  • Consul
  • Nomad
  • Packer
• Understanding of Artificial Intelligence (AI) and Machine Learning (ML) concepts and their application in Dev
  Sec
  Ops, covering:
  • Infrastructure
  • CI/CD
  • Cybersecurity
  • Code analysis

Additional Information

What we offer:

• Professional development and monitoring talent;
• Commitment to our employees' development;
• Collaboration in a company that is constantly growing and evolving;
• Strong organisational culture: collaboration, sharing, flexibility, integrity and low ego.

Would you like to join our team? Then send your CV.