DevSecOps Engineer (SaaS)

TL;DR

DevSecOps Engineer (SaaS): Developing and maintaining automated security tools and secure cloud infrastructure for a global payroll and HR platform with an accent on CI/CD integration and vulnerability management. Focus on implementing policy-as-code, tuning WAF/firewalls, and ensuring regulatory compliance across a distributed environment.

Location: Remote (EMEA and Brazil)

Company

An all-in-one payroll and HR platform for global teams, focusing on unlocking global opportunity through compliant hiring and payment infrastructure.

What you will do

• Develop and maintain automated security tools to identify vulnerabilities and perform code analysis.
• Integrate security scanners (SAST, DAST) and vulnerability assessment tools into the CI/CD pipeline.
• Design and implement secure cloud infrastructure, network architecture, and robust access controls.
• Implement proactive security monitoring, log analysis, and intrusion detection systems.
• Collaborate with development and operations teams to integrate security requirements into the software lifecycle.
• Assist in compliance assessments and audits to ensure adherence to regulatory requirements.

Requirements

• 3+ years of experience in Security, SecOps, or DevSecOps roles.
• Hands-on experience with policy-as-code and IaC security scanning tools (e.g., Checkov, tfsec, Terrascan).
• Basic programming skills in JavaScript, TypeScript, or Python.
• Proficiency with Docker, Kubernetes, and CI/CD pipelines.
• Knowledge of OWASP Top 10, secure coding, encryption, and authentication.
• Must be based in EMEA or Brazil.

Nice to have

• Relevant professional security certifications.

Culture & Benefits

• Stock grant opportunities based on role and location.
• Full remote work flexibility, including optional WeWork access.
• Scalable rewards and benefits programs tailored to the employee's country.
• Diverse and inclusive global work environment spanning over 100 countries.