DevOps Engineer helping deploy MVP, CRM, and billing systems for Newrich Network. Focused on infrastructure, automation, and building for scale with potential to go full - time.
About the role
- Application Security Manager at Evertec, handling security strategy and implementation in financial tech. Leading efforts in Application Security, DevSecOps, and compliance with financial regulations.
Responsibilities
- Develop, implement, and maintain the Corporate Secure Development Program (SDL/SSDLC), ensuring security from design through production.
- Define and evolve Application Security standards, including secure code review, guidelines, controls, libraries, and frameworks.
- Lead Threat Emulation initiatives, Threat Modeling (STRIDE, DREAD, MITRE ATT&CK) and risk-driven offensive simulations.
- Implement security pipelines in CI/CD using tools such as SAST, SCA, DAST and container scanning.
- Assess, advise on, and track remediation of vulnerabilities identified in applications, APIs, microservices and integrations.
- Conduct architectural reviews, supporting engineering teams in defining secure patterns.
- Work with the Zero Trust model, ensuring applications and APIs follow strong authentication and authorization principles.
- Create, maintain, and evolve security mechanisms for APIs, microservices and distributed applications.
- Build automation and governance workflows in ticketing systems for requests, audits and AppSec demands.
- Collaborate with engineering teams to identify, mitigate and prevent risks in code and architecture.
- Perform and oversee internal offensive tests (Threat Emulation), such as targeted pentests, API exploitation and attack simulations.
- Support development and SRE teams in applying patches, fixes and vulnerability mitigations.
- Ensure compliance with financial market regulatory standards, including Central Bank regulations, NIST, ISO 27001, OWASP and audit requirements.
- Manage continuous improvement initiatives, raise AppSec maturity levels and act as an internal technical reference.
Requirements
- Proven experience in Application Security (AppSec), leading strategic and technical initiatives.
- Hands-on experience with SDL/SSDLC and integrating security throughout the software development lifecycle.
- Solid knowledge of offensive security applied to applications, including vulnerability analysis, secure code review, APIs and Threat Modeling.
- Experience with DevSecOps practices and tools such as SAST, SCA, DAST and container scanning, with a focus on automation.
- Good understanding of security standards and frameworks (OWASP, NIST, ISO 27001, Zero Trust).
- Ability to perform architectural analysis and guide secure technical decisions for applications and APIs.
- Experience managing multidisciplinary teams.
- University degree.
- Advanced English.
Benefits
- Meal or food allowance;
- Flexible Benefit (Flash);
- Health insurance;
- Partners for psychological, legal, financial and nutritional support (CLUDE, C4LIFE and ASQ);
- Psicologia Viva;
- Dental insurance;
- Childcare assistance;
- Support for children with special needs;
- Fertility treatment assistance;
- Extended maternity and paternity leave;
- Transportation voucher or Home Office allowance (for telework contracts);
- Gympass (Wellhub) and TotalPass;
- Flexible working hours;
- Life insurance;
- Partnership club;
- Partnership with Sesc;
- Just dress — no dress code;
- Birthday day off;
- Beca (education incentive program);
- Profit-sharing (PPR) or Bonus — based on achievement of goals and results.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Cloud Operations Engineer supporting and maintaining multi - cloud public infrastructure for enterprise customers. Working in structured ITIL environment and contributing to operational excellence.
DevOps Engineer building and maintaining authentication platforms in multi - cloud environments. Using technologies like Terraform, Ansible, and Python for automation and optimization.
Cloud Engineer developing Infrastructure - as - Code with Terraform and Azure DevOps. Managing Azure infrastructure and leading incident response within cross - functional teams.
DevSecOps Engineer at Skillfield working on secure CI/CD pipelines for mobile - first delivery. Collaborating with teams to embed security and automation in the delivery lifecycle.
Summer Trainee position in Kraków for IT & Telecom, focusing on DevOps practices with embedded C/C++. Opportunity for continued work after internship.
Lead DevOps Engineer focused on AWS and Azure data platform solutions. Collaborating with teams to deliver scalable, secure, and highly available solutions.
DevOps Engineer working at GRÜN Software Group to automate and maintain stable infrastructures. Collaborating with teams to improve deployments and processes for better performance.
Linux System Administrator managing IT infrastructures for educational institutions and research. Collaborating on DevOps and HPC projects while ensuring system security and performance.
Azure SRE Engineer responsible for designing and maintaining secure, scalable Azure cloud infrastructure. Driving automation and operational excellence for leading organizations in technology transformation.