DevSecOps (AWS)

TL;DR

DevSecOps (AWS/PHP): Securing web applications and AWS-native infrastructure with an accent on embedding security throughout the SDLC. Focus on designing security controls, implementing bot protection using AWS WAF, and automating SAST/DAST in CI/CD pipelines.

Location: Porto, Portugal (Remote work option)

Salary: €40,000 – €70,000 per year

Company

hirify.global is a SaaS platform focused on company reviews and employer branding.

What you will do

• Design and improve application security controls for a PHP and JavaScript (NodeJS, React, NextJS) web application.
• Embed security into the CI/CD pipeline using GitHub and GitHub Actions.
• Perform secure code reviews, threat modelling, and architecture reviews for new features.
• Mitigate malicious bots and automated abuse using AWS WAF and Shield.
• Operate SAST, DAST, and dependency-scanning tools to ensure secure third-party components.
• Collaborate with Cloud Infrastructure teams to secure AWS workloads on ECS, Lambdas, and ALBs.

Requirements

• Strong experience in application security, particularly for PHP-based web applications.
• Deep understanding of OWASP Top 10 and web security fundamentals.
• Hands-on experience with AWS security services (Security Hub, GuardDuty, CloudTrail, WAF & Shield).
• Experience securing containerized workloads on AWS ECS (EC2 & Fargate).
• Proficiency with SAST/DAST tools (e.g., Snyk, Dependabot, Trivy, OWASP ZAP, Burp).
• Fluent English is required.

Nice to have

• Proficiency in Portuguese.
• Experience with Bash, Python, or similar scripting for security automation.

Culture & Benefits

• Remote work option and trust-based working hours.
• Up to 12 weeks of Workation.
• Dog-friendly office environment.
• Mobile devices provided for private use.
• Transparent and competitive salary.