DevSecOps

Description

Job Summary: We are seeking a DevSecOps professional to work cross-functionally across technology teams, focusing on platform security, automation, reliability, and scalability. Key Highlights: 1. Cross-functional engagement with a focus on security, automation, and scalability 2. Key role in integrating development, infrastructure, and security 3. An environment that values responsibility, autonomy, and continuous growth **Who We Are?** We are a **fast-growing technology startup**, focused on transforming how companies manage their processes and relationships with suppliers. We combine **technology, close customer collaboration, and high-level execution** to deliver real-world impact for our partners. Here, we value: * **Ownership mindset** * **Responsibility and autonomy** * **Commitment to results** * **Respect for people and diversity** *We believe strong companies are built by people who take ownership, collaborate, and grow alongside the business.* **About the Role** We are looking for a **DevSecOps** professional to work cross-functionally across our technology teams, supporting the evolution of our platform with a focus on **security, automation, reliability, and scalability**. This role will play a key part in **integrating development, infrastructure, and security**, helping to establish best practices, reduce risks, and ensure our solutions scale robustly. We seek someone with a **hands-on approach, systemic vision, and ability to influence technical culture**, working closely with squads to support continuous improvement of the environment. **Responsibilities and Duties** **Security and DevSecOps Culture** * Engage cross-functionally with teams to promote a **DevSecOps culture throughout the entire development lifecycle**; * Implement and monitor **security controls for applications, APIs, infrastructure, and cloud environments**; * Support the evolution of security practices without compromising team agility. **Architecture, Automation, and Pipelines** * Enhance pipelines and processes with a focus on **automation, quality, and security**; * Support implementation of **secure CI/CD and versioning best practices**; * Contribute to the continuous improvement of **platform infrastructure and architecture**. **Identity, Access, and Integrations** * Manage identity and access (**IAM**), including authentication and authorization; * Work with tools such as **Keycloak** and system integrations; * Ensure security best practices for **APIs and integrations**. **Support and Continuous Improvement** * Assist with incident troubleshooting and root cause analysis; * Propose and implement preventive improvements; * Document standards, processes, and best practices for teams; * Support squads in adopting safer and more efficient practices. **Tech Stack and Environment** **You will work in an environment featuring:** * Python (Django and Flask) * PostgreSQL (AlloyDB) * Google Cloud Platform (GCP) * Kubernetes * APIs * Keycloak * GitHub * Linux VMs **Requirements and Qualifications** * Experience working as a **DevSecOps** professional or in closely related roles; * Hands-on experience with **Google Cloud Platform (GCP)**; * Practical knowledge of **Kubernetes and Linux environment administration**; * Experience with **API and integration security**; * Experience with **identity and access management (IAM)**; * Knowledge of **GitHub and versioning and automation best practices**; * Familiarity with **Python/Django applications and PostgreSQL databases**; * Mandatory knowledge of **Keycloak**. **Nice-to-Haves** * Experience in startups or fast-paced growth environments; * Experience with **observability, hardening, secret management, and access policies**; * Experience with **infrastructure-as-code and CI/CD**; * Knowledge of security practices within pipelines; * Architectural vision focused on scalability and resilience. **Impact of This Role** * Advancing team security maturity; * Reducing risks across applications and infrastructure; * Improving platform reliability and scalability; * Establishing DevSecOps best practices across the company; * Directly supporting sustainable operational growth. **Additional Information** **Employment Type:** * PJ \- Full-time remote work **Benefits:** * Cost-of-living allowance * Profit-sharing (PLR) per current policy * Paid leave * Birthday day off * 3-year passport * Maternity and paternity leave **WHY JOIN GEDANKEN?** At Gedanken, we believe **sustainable results stem from authentic relationships** — with clients and with people. Here you’ll find: * **Transparency** * **Collaboration** * **Real-world challenges** * **Space to build, make mistakes, learn, and grow** *If you’re looking for a place where your work truly makes a difference*, this could be it. **Make things happen. Join Gedanken.** At Gedanken, we believe great results begin with **\#peoplewhomakeithappen**. We’re driven by challenges, innovative ideas, and the desire to transform realities. Here, **\#customerfocus** is more than a principle — it’s our compass. We strive to deeply understand the needs of those we serve to deliver solutions that generate real impact. Our journey is guided by **\#integrityineverythingwedoit**, because we believe trust is built through transparency and accountability. We value an environment where **\#werespectvalueandwelcomediversity**. We know diverse stories, perspectives, and talents enrich our decisions and strengthen our culture. And above all, we’re certain that **\#togetherwearestronger**. That’s why we collaborate, celebrate collective achievements, and support each other to reach our best. If you want to join a team that unites purpose, innovation, and extraordinary people, your place may be here with us. Make things happen. Join Gedanken.