Infrastructure Security Engineer/DevSecOps

CyprusSpainKazakhstanSerbiaOn-siteMiddleSenior

Information Security Team:

We are seeking a highly motivated and experienced DevSecOps Engineer to join our Network & Infrastructure Security team. In this role, you will be focusing on integrating security best practices throughout the entire software development lifecycle (SDLC) for our cloud-native applications and infrastructure. You will work closely with development, infrastructure and security teams to automate security controls and proactively identify and mitigate risks within our AWS and Kubernetes environments. Your expertise will be vital in building secure, scalable, and resilient systems.

Challenges that await you:

  • Security Automation & Integration: Design, implement, and maintain automated security controls and pipelines (CI/CD) within GitLab. This includes static application security testing (SAST), dynamic application security testing (DAST), software composition analysis (SCA), infrastructure as code (IaC) scanning, and container image scanning.
  • Cloud Security (AWS): Implement and enforce security best practices for AWS services, including IAM, VPC, Security Groups, S3, EC2, Lambda, EKS, and other relevant cloud components.
  • Kubernetes Security: Secure Kubernetes clusters and workloads, pod security policies, container runtime security, admission controllers, secrets management, and vulnerability scanning of container images.
  • Service Mesh Security (Istio or similar): Implement and manage security features within a service mesh (e.g., Istio) for traffic encryption, authentication, authorization, and policy enforcement between microservices.
  • Incident Response & Remediation: Implement monitoring rules to detect infrastructure related security incidents and response measures.
  • Threat Modeling & Risk Assessment: Participate in threat modeling exercises and risk assessments for new features and infrastructure changes, providing security recommendations.
  • Security Tooling & Research: Evaluate, recommend, and implement new security tools and technologies to enhance our security posture. Stay abreast of emerging security threats, vulnerabilities, and technologies in the cloud-native landscape.
  • Collaboration & Education: Act as a security advocate, providing guidance and training to development and operations teams on secure coding practices, infrastructure security, and DevSecOps principles.

What makes you a great fit:

  • 1+ years of experience in DevSecOps, Cloud Security, or a related cybersecurity role, with a strong focus on automation and infrastructure security.
  • Extensive experience with AWS(Azure/GCP):  Understanding of AWS/Azure/GCP security services, best practices, and architecture.
  • Proficiency in Kubernetes: Strong knowledge of Kubernetes architecture, security configurations, and deploying secure workloads.
  • CI/CD Pipeline Expertise: Hands-on experience designing, implementing, and securing CI/CD pipelines, preferably with GitLab CI/CD.
  • Infrastructure as Code (IaC): Hands-on experience with IaC tools like Terraform or CloudFormation for secure infrastructure provisioning and management.
  • Service Mesh Knowledge: Experience with Istio or a similar service mesh for securing inter-service communication.
  • Networking Fundamentals: Understanding of network protocols, firewalls, VPNs, and network segmentation in cloud environments.

Your bonus skills:

  • Experience with managing and fine-tuning Web Application Firewall(WAF)
  • Relevant industry certifications (CKA/CKAD/CKS).
  • Familiarity with compliance frameworks (e.g., PCI DSS, GDPR)

Our ways of working:

  • Innovative Spirit: A commitment to creativity and groundbreaking solutions
  • Honest Feedback: valuing open, transparent communication
  • Supportive Team: a strong, collaborative community
  • Celebrating Achievements: recognizing our wins together
  • High-Tech Environment: a team full of smart and revolutionary people who date to challenge the status quo of incumbent finances

Our benefits:

  • Relocation support to one of our hubs — Cyprus, Spain, Georgia, Serbia, or Kazakhstan — with assistance for the employee and their family
  • Flexible work from one of our offices or remote
  • Healthcare Coverage
  • Education Budget: Language lessons, professional training and certifications
  • Wellness Budget: Mental health and fitness activity reimbursements
  • Vacation policy: 20 days of annual leave and paid sick leave

Published on: 7/2/2026

Banco Plata

Banco Plataverified company badge

Banco Plata is a tech platform powered by AI that is redefining the financial experience in Mexico. Plata's mission is to simplify the financial experience.

Website

See all 61 jobs at Banco Plata

Please let Banco Plata know you found this job on Wantapply.com. It helps us to get more jobs on our site. Thanks!

Similar jobs