···
Log in / Register

DevSecOps/SRE

Indeed
Full-time
Onsite
No experience limit
No degree limit
Praça XV de Novembro, 321 - Centro, Florianópolis - SC, 88010-400, Brazil
Favourites
Share
Some content was automatically translatedView Original

Description

Job Summary: Integrate security into operations to protect infrastructure, applications, and data—from physical and network layers through development processes. Key Highlights: 1. Integrate security into Kubernetes and cloud (AWS/GCP) operations. 2. Develop and enhance CI/CD pipelines with integrated security checks. 3. Collaborate with engineering teams to ensure high availability and security. **Let’s pursue the extraordinary together?** **Our Principles** * Communicate person-to-person * Pursue the extraordinary * Bring innovation to life * Strengthen ourselves through transparency **Responsibilities and Duties** **Your Role Will Be:** Integrate security into operations, protecting infrastructure, applications, and data—from physical and network layers through continuous development and delivery processes—always aligned with security best practices and compliance requirements. * Administer and optimize **Kubernetes clusters** and cloud infrastructure (**AWS/GCP**), focusing on availability, performance, and security. * Implement and maintain **infrastructure security controls**, including network segmentation, environment hardening, and access protection. * Establish and improve **monitoring, alerting, and security incident detection mechanisms**, aiming for proactive response. * Automate deployments and infrastructure management to ensure **efficiency, scalability, and security by default**. * Develop and enhance **CI/CD pipelines**, embedding security checks throughout the delivery workflow. * Support execution and analysis of **application security testing**, such as **DAST, IAST, and vulnerability assessments** for in-house systems. * Continuously strengthen system **resilience, security, and reliability**. * Collaborate with engineering teams to ensure **high availability**, sound operational practices, and security awareness. **Requirements and Qualifications** **What We Expect From You:** * Practical experience in **security applied to infrastructure and the software development lifecycle**, understanding risks, controls, and best practices—even without being exclusively an offensive security specialist. * Solid experience with **Docker and Kubernetes**, including troubleshooting, scalability, and security aspects. * Hands-on knowledge of **Infrastructure as Code (IaC)** using **Terraform and/or Ansible**, including access control and environment segregation. * Experience with **Cloud Computing (AWS/GCP)**: * VPC, IAM, Load Balancers, S3, RDS * Secure configuration and automation practices. * **Security and Networking**: * Configuration and management of **Firewall and WAF** * **Access control, network policies, and threat mitigation.** * **Automation and Scripting**: * Intermediate to advanced proficiency in **Python** for operational and security automation. * **Intermediate Linux**: * Server administration * Network troubleshooting * Basic system hardening and security concepts. * Familiarity with **secure access best practices**, such as user management, principle of least privilege, and secure authentication. **You’ll Stand Out If You Have:** * Additional knowledge in **applied security**, focused on prevention, detection, and response—without requiring an exclusively offensive profile. * Experience with **CI/CD** incorporating security checks (e.g., dependency, image, or code scanning). * Monitoring and observability with **Prometheus, Grafana**, or similar tools. * Understanding of **penetration testing, vulnerability analysis, or security scanning** (DAST, IAST, SAST—even using off-the-shelf tools). * Administration and optimization of **SQL and NoSQL databases**, with attention to security and access control. * Knowledge of **Keycloak** for authentication and identity management. * Administration of **Java-based solutions**, such as **Apache NiFi**. * Familiarity with **endpoint and network-connected device security best practices**. **Additional Information** **At Franq, You Will:** * Work alongside experienced and renowned professionals from the financial industry; * Develop, evolve, and learn skills using best practices and cutting-edge technologies; * Contribute to an innovative project that impacts customers’ financial lives and creates new ways of doing business. **We Offer:** * CLT employment contract; * Flexible benefits card (Caju) worth R$ 1.033,50; * Fully company-subsidized medical and dental insurance (Bradesco Plan), with no copayment; * Life insurance; * Partnership with Wellhub (Gympass); * Partnership with Psicologia Viva and Conexa Saúde; * Birthday day off; * Fresh fruit station for Franqers working onsite. **Diversity and Inclusion at Franq!** At Franq, you have space to be authentically yourself! We value you regardless of race, color, religion, gender identity, nationality, disability, sexual orientation, ancestry, or age. All our positions are open to candidates with disabilities—if this applies to you, please specify it in your application and provide the corresponding CID code. **JOIN US IN PURSUING THE EXTRAORDINARY** Become a Franqer! \#GoFranq

Source:  indeed View original post
João Silva
Indeed · HR

Company

Indeed
João Silva
Indeed · HR

Similar jobs

Cookie
Cookie Settings
Our Apps
Download
Download on the
APP Store
Download
Get it on
Google Play
© 2025 Servanan International Pte. Ltd.