DevSecOps Engineer SR
Remote · Brazil
Job Summary
Senior DevSecOps Engineer responsible for designing, implementing, and maintaining secure CI/CD pipelines for frontend, backend, and infrastructure delivery; automating infrastructure provisioning and deployment for cloud and on-prem environments; establishing security controls across the software delivery lifecycle; implementing secure perimeter and runtime patterns for external portals; supporting scalable platform deployments with secure authentication, file distribution, and enterprise integrations; defining observability (logs, metrics, alerts, health monitoring) for platform services; partnering with engineering to embed security-by-design and operational best practices; contributing to incident response, vulnerability remediation workflows, compliance-aligned controls, and environment hardening; documenting deployment standards, platform architecture, runbooks, and operational procedures.
Required Qualifications
- Strong experience with DevOps and DevSecOps practices across build, release, deployment, and runtime operations
- Hands-on experience with CI/CD pipeline design, infrastructure as code, automation scripting, and environment provisioning
- Strong knowledge of cloud and hybrid deployment architectures, containerization, and orchestration concepts
- Solid understanding of application and infrastructure security, secrets management, IAM, vulnerability scanning, and secure delivery controls
- Experience implementing observability, alerting, logging, audit, and platform monitoring practices
- Familiarity with network security, gateway patterns, secure external access, and production hardening approaches
- Experience collaborating with software engineering teams to support secure and reliable software delivery
- Strong troubleshooting, documentation, and operational problem-solving skills
- Experience with Docker, Kubernetes, and secure container runtime practices
- Experience with cloud platforms such as AWS and secure storage/file distribution patterns
- Knowledge of SAST, DAST, dependency scanning, policy-as-code, and security compliance frameworks
- Experience supporting systems with multi-tenant isolation and external security requirements
- Familiarity with Python-based application environments, API-centric architectures, and enterprise integration patterns
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.