Key skills
AWSCloudKubernetesGitLab CIPrismaGitLabCI/CDCommunicationCollaborationNetwork SecurityCloud Security
About this role
Role Overview
- Secure CI/CD and delivery infrastructure (runners, pipelines, build environment)
- Implement and enforce supply chain security controls in collaboration with AppSec
- Build and evolve AWS cloud security practices
- Improve network-level security (segmentation, service-to-service communication, attack surface reduction)
- Develop and strengthen security controls in GitLab CI
- Implement IaC security (scanning in CI/CD and support manual IaC reviews)
- Develop misconfiguration management practices
- Work hands-on with Prisma Cloud (co-ownership)
- Contribute to Kubernetes security (Kyverno, policies)
- Participate in incident response, investigations, and postmortems
- Drive adoption of security practices across DevOps teams
Requirements
- 3+ years in InfraSec / DevSecOps (not pure DevOps or AppSec)
- Strong hands-on experience with AWS security
- Strong hands-on experience with Kubernetes security
- Understanding of network security in cloud/Kubernetes environments
- Experience securing CI/CD and software delivery pipelines
- Experience with IaC security (scanning and/or review)
- Experience building or improving InfraSec / DevSecOps processes
- Ability to drive changes and influence engineering teams
- Ability to work in non-ideal, evolving environments
- Risk-based mindset (ability to prioritize based on real impact)
Tech Stack
- AWS
- Cloud
- Kubernetes
Benefits
- Opportunities for growth in an international team
- Flexible work arrangements