Resume Score

Check how well your resume matches this job before you apply.

Sign in to check score

About the role

  • DevSecOps role to build and own the security function at Growe Talents, assessing security posture and implementing controls across the development lifecycle.

Responsibilities

  • Build and own the DevSecOps function from the ground up (in the security team), defining strategy, roadmap, priorities, and success metrics;
  • Assess the current security posture of applications, infrastructure, cloud environments, and development processes;
  • Design and implement security controls across the software development lifecycle;
  • Establish and maintain secure CI/CD practices, including security gates and automated validation processes;
  • Integrate security checks into engineering workflows with a strong focus on automation and developer experience;
  • Build and operate vulnerability management processes, including triage, prioritization, remediation tracking, and reporting;
  • Define and implement cloud security standards, guardrails, and best practices across AWS, Azure, or GCP environments;
  • Design and enforce Kubernetes and container security controls, including RBAC, secrets management, network segmentation, and runtime protection;
  • Develop Infrastructure-as-Code security standards and policy-as-code controls;
  • Integrate security logs and events into SIEM to support monitoring, threat detection, and incident response;
  • Create security standards, technical guidelines, and operational procedures for Engineering and Platform teams;
  • Support security incident investigations related to cloud, infrastructure, CI/CD, application vulnerabilities, exposed credentials, and supply-chain threats.

Requirements

  • 2+ years of hands-on experience in DevSecOps, Cloud Security, or Security Engineering;
  • Experience leading security initiatives, projects, or programs with significant ownership and autonomy;
  • Proven experience building security processes, tooling, or security programs from scratch;
  • Hands-on experience integrating security controls into CI/CD pipelines without negatively impacting engineering productivity;
  • Experience with containerized environments and Kubernetes security;
  • Experience working with cloud platforms (AWS);
  • Practical experience with Infrastructure as Code tools such as Terraform, Helm, or Ansible;
  • Experience integrating security logs and events with SIEM platforms and supporting detection, monitoring, and incident response use cases;
  • Ability to balance security requirements with business objectives and engineering velocity;
  • Experience with Python will be a plus;
  • English - Intermediate+ or higher.

Benefits

  • Health & Wellness Focus
  • Global Medical Coverage
  • Growth Opportunities
  • Benefits Programs (compensation for the gym/stomatology/psychological service & etc.)
  • Performance-Driven Rewards
  • Dynamic Work Environment

Job type

Full Time

Experience level

JuniorMid level

Salary

Not specified

Degree requirement

No Education Requirement

Tech skills

AnsibleAWSAzureCloudGoogle Cloud PlatformKubernetesPythonTerraform

Location requirements

RemoteWorldwide

Report this job

Found something wrong with the page? Please let us know by submitting a report below.