Devoteam Cyber Trust | DevSecOps - Architect - Senior/Lead (Remote) Lisboa

Devoteam Cyber Trust | DevSecOps - Architect - Senior/Lead (Remote)
Lisboa
Lisboa, Lisboa, Portugal

Devoteam Cyber Trust | Dev
Sec
Ops - Architect - Senior/Lead (Remote)

1 week ago Be among the first 25 applicants

Company Description

Devoteam Cyber Trust is the Cybersecurity specialist arm of the Devoteam Group. With our 800+ experts located across EMEA, we aim to establish cybersecurity as an enabler of business success rather than a gatekeeper. We leverage an
-
- end approach to Cyber Resilience, Applied Security, and Managed Security services to secure the tech journey of large and
- sized companies from all sectors and industries.

Since 2009, previously known as INTEGRITY, our team based in Portugal is specialised in providing
- edge Managed Security Services that combine its expertise and proprietary technology to consistently and effectively reduce the cyber risk of our clients. The comprehensive service range includes Persistent Intrusion Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. ISO 27001 (Information Security) and ISO 9001 (Quality) certified, PCI-QSA, and member of CREST and CIS - Centre for Internet Security, we provide services to a considerable number of clients, operating in more than 20 countries.

Job Description

Time zones: EMEA (08:00 - 17:00 CET), AMER (16:00 - 01:00 CET) or APAC (00:00 - 09:00 CET)

• Architect, design and implement infrastructure solutions, ensuring alignment with application requirements and cybersecurity best practices, with a focus on
  - premises infrastructures.
• Architect, design, implement, and maintain containerised solutions on Open
  Shift, Docker and Kubernetes, including the use of Kubernetes Operators, with a focus on
  - premises infrastructures.
• Architect and develop infrastructure as code (Ia
  C) strategies and implementations, with a focus on
  - premises infrastructures, primarily using Terraform / Terragrunt and Ansible, to manage infrastructure with a strong focus on Open
  Shift and Kubernetes environments.
• Define and guide the development of CI/CD pipelines specifically tailored for
  - premises Open
  Shift and Kubernetes deployments, automating build, test, and deployment processes, with a focus on Jenkins and integrating with artefact repositories such as Artifactory, JFrog Xray, and Nexus.
• Collaborate with infrastructure and development teams to integrate cybersecurity practices (Sec
  Ops) throughout the infrastructure and software development lifecycle, providing architectural guidance and ensuring documentation and cybersecurity within the Open
  Shift and Kubernetes context.
• Strategise, develop and optimise Dev
  Sec
  Ops practices and tools on the environments, contributing to continuous improvement by leveraging testing automation frameworks, code analysis tools such as Sonar
  Qube, and other cybersecurity scanning tools.
• Design and oversee the implementation of comprehensive logging, monitoring, and alerting solutions, such as Prometheus, Grafana, Loki, and Alertmanager to ensure system operation, performance, and proactive incident detection within the Open
  Shift and Kubernetes ecosystem.
• Provide expert guidance and lead the response to incidents related to infrastructure, applications, and deployments, with a specific focus on Open
  Shift and Kubernetes
  - premises environments.
• Document architectural decisions, processes, including installation protocols, technical specifications (BSDS), and Gx
  P relevant documentation, to ensure knowledge management and compliance.
• Keep up to date with the latest technologies and trends in Dev
  Sec
  Ops, with a strong emphasis on
  - premises Open
  Shift and Kubernetes, and define the strategic direction for their adoption.

Qualifications

• Degree in Computer Engineering, Information Technology or a related field.
• Proven experience (+7 years) as a Dev
  Sec
  Ops Engineer or Architect, with significant experience in
  - premises environments.
• Strong understanding of Dev
  Ops, Sec
  Ops and Git
  Ops principles and practices, with a strategic focus in
  - premises infrastructures.
• Extensive experience with
  - premises infrastructure management, including Linux systems and provisioning through Ia
  C, with a proven ability to define infrastructure architectures.
• Deep experience with containerisation technologies, specifically Open
  Shift, Docker, and Kubernetes, including the use of Kubernetes Operators, and the ability to design scalable and secure container platforms.
• Experience with Open
  Shift specific tools such as Harbor, ACS (Advanced Cluster cybersecurity), Argo CD (Git
  Ops), and ACM (Advanced Cluster Management), with a focus on their architectural integration.
• Proven experience designing and implementing Ia
  C strategies using tools such as Terraform / Terragrunt and Ansible for infrastructure automation, with a focus on
  - premises infrastructures.
• Proven experience designing and guiding the implementation of CI/CD pipelines with Jenkins / Cloud
  Bees, Azure Dev
  Ops for containerised applications on Open
  Shift and Kubernetes.
• Experience with artefact repositories such as Artifactory and XRay from JFrog, and Nexus from Sonatype, including their role in secure software supply chains.
• Experience with additional Hashi
  Corp tools such as Vault, Consul, Nomad and Packer, and their application in architectural designs.
• Experience with testing automation frameworks, code analysis and cybersecurity scanning tools such as Sonar
  Qube, and the ability to define their integration into the development lifecycle.
• Hands-on experience with infrastructure logging, monitoring, and alerting tools relevant to Open
  Shift and Kubernetes such as Prometheus, Grafana, Loki and Alertmanager, with the ability to design comprehensive observability solutions.
• Proficient in scripting languages such as Python and Bash, with the ability to develop automation scripts for architectural tasks.
• Familiarity with Scrum or Agile methodologies, with experience working in agile environments as a technical leader.
• Experience with the Atlassian suite of tools (Jira, Confluence, Bitbucket), and their use in documenting and communicating architectural decisions.
• Experience working in Gx
  P regulated environments and understanding Gx
  P requirements, with the ability to design compliant solutions.
• Excellent organisational, analytical, and
  - solving skills, with a strong ability to think strategically and holistically.
• Strong sense of ethics, integrity, and responsibility, particularly in regulated environments, with a focus on security by design.
• Excellent communication and teamwork skills, including the ability to collaborate effectively with development and infrastructure teams, and to articulate complex technical concepts to both technical and
  - technical audiences.
• Fluency in Portuguese and a moderate to high level of proficiency in English.

Nice to Have:

• Relevant certifications, such as ITIL v4 Foundation or higher, are highly valued.
• Relevant Open
  Shift/Kubernetes certifications, such as CKA, CKS, Red Hat Certified Specialist in Open
  Shift, are highly valued.
• Deep proficiency in information cybersecurity principles, cybersecurity best practices, and frameworks such as ISO 27001, NIST Cybersecurity Framework and CIS Top Critical cybersecurity Controls.
• Knowledge of Javascript frameworks.
• Knowledge of Artificial Intelligence and Machine Learning concepts, and their application in Dev
  Sec
  Ops within
  - premises environments, including infrastructure, CI/CD, cybersecurity, and code analysis, with the ability to envision and design future solutions leveraging these technologies.

Additional Information

What we offer:

• Professional development and monitoring talent;
• Commitment to our employees' development;
• Collaboration in a company that is constantly growing and evolving;
• Strong organisational culture: collaboration, sharing, flexibility, integrity and low ego.

Would you like to join our team? Then send your CV.

The Devoteam Group works for equal opportunities, promoting its employees based on merit and actively fights against all forms of discrimination. We are convinced that diversity contributes to the creativity, dynamism and excellence of our organization. All of our vacancies are open to people with disabilities.

Seniority level

Mid-Senior level

Employment type

Full-time

Job function

Information Technology

Industries

IT Services and IT Consulting