DevSecOps Engineer Braga

Overview

Checkmarx is the enterprise application security leader and host of Checkmarx One — the
- leading
- native App
Sec platform that helps enterprises build #Dev
Sec
Trust. Our platform enables CISOs, App
Sec and development leaders to prioritize their teams’ focus on what impacts their business, securing every phase of development from the first line of code through production while balancing security and development needs. We serve more than 1, 800 customers, including 60 percent of all Fortune 100 organizations.

What are we looking for? Checkmarx is seeking a talented Senior Dev
Sec
Ops Engineer to join our growing Checkmarx One Platform Engineering Dev
Ops group. Checkmarx One is our flagship unified Application Security Platform, developed with
- edge
- native technologies and deployed in
- cloud and
- premises environments.

Responsibilities

• Design, implement, and automate secure, scalable infrastructure for Checkmarx One environments, ensuring scale, high availability and compliance with Fed
  RAMP requirements.
• Develop and maintain CI/CD pipelines with a focus on secure software supply chain practices (e. g. , SBOMs, signing, verification).
• Harden Kubernetes-based deployments by building and enforcing security controls using Kubernetes Operator Framework, Network Policies, and Pod Security Standards.
• Integrate and manage observability and security monitoring tools, such as Fluent Bit, ELK, Grafana, Prometheus, and
  - native security tooling (e. g. , AWS Guard
  Duty, Inspector).
• Collaborate with application security, product engineering, and compliance teams to define and enforce Dev
  Sec
  Ops best practices.
• Conduct threat modeling and risk assessments of infrastructure changes and implement remediation strategies as needed.
• Lead the adoption of
  -
  - default templates
  -
  - code (AWS CDK, Terraform, etc. ) reusable automation.
• Assist in evidence collection and environment preparation for Fed
  RAMP audits and continuous monitoring.

Qualifications

• 5+ years of experience as a Dev
  Ops, Site Reliability, or Platform Engineer with a strong focus on security (Dev
  Sec
  Ops).
• In-depth experience securing production environments on AWS (or other major clouds) using least privilege, identity federation, VPC security, etc.
• Proven expertise with Kubernetes and the Operator Framework, including workload security hardening, admission controllers, and custom operators.
• Strong knowledge of CI/CD and
  -
  - code tools such as Jenkins, Git
  Hub Actions, Circle
  CI, AWS CDK, or Terraform.
• Experience building and managing secure containerized environments using Docker, Helm, and Argo CD.
• Proficiency in at least one programming or scripting language (Python, Bash, or Go) with emphasis on automation and secure coding.
• Familiarity with compliance frameworks such as Fed
  RAMP, SOC 2, or ISO 27001, and how they apply to
  - native architectures.
• Experience integrating security observability and logging systems (e. g. , Fluent Bit, ELK, Prometheus, AWS Cloud
  Trail).
• Strong analytical and
  - solving skills with a
  - first mindset.

What we offer

Checkmarx offers a great work environment, professional development, challenging careers, competitive compensation, great
- life balance, as well as great benefits and perks throughout the year.

Checkmarx is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.

Seniority level

• Mid-Senior level

Employment type

• Full-time

Job function

• Engineering and Information Technology

Industries

• Computer and Network Security

Referrals increase your chances of interviewing at Checkmarx by 2x