Senior DevSecOps Engineer

Description

Job Summary: We are seeking a Senior DevSecOps Engineer passionate about cloud security, automation, and protection of critical platforms, integrating security into every stage of the development and operations lifecycle. Key Highlights: 1. Integrate security into every stage of the development lifecycle 2. Ensure compliance with standards such as PCI DSS, SOC 2, and GDPR 3. Build automated security controls in cloud and CI/CD environments Senior DevSecOps Engineer | Kubernetes & Cloud Security Direct hiring by Gopass Indefinite-term contract Hybrid work model in Bogotá, Colombia (North Zone) Salary to be negotiated based on experience At Gopass, we are looking for a Senior DevSecOps Engineer passionate about cloud security, automation, and protecting high-impact critical platforms. You will be responsible for integrating security across every stage of our platform’s development and operations lifecycle, ensuring compliance with standards such as PCI DSS, SOC 2, and GDPR within a modern architecture built on Kubernetes and AWS. We seek a candidate with strong technical vision, a DevSecOps mindset, and hands-on experience building automated security controls in cloud and CI/CD environments. What will be your mission? Integrate security holistically across our technology platform—automating controls, strengthening pipelines, and ensuring security and compliance standards for Gopass’s critical services. Responsibilities Design and implement SAST, DAST, SCA, and IaC scanning controls in CI/CD pipelines. Manage secrets and rotation policies using Vault or AWS Secrets Manager. Implement policies-as-code using OPA/Gatekeeper or Kyverno. Administer Kubernetes security controls. Lead vulnerability management and remediation in collaboration with squads. Maintain controls and evidence for SOC 2 and PCI DSS audits. Participate in security incidents and incident response processes. Perform threat modeling for new architectures and services. Strengthen security-by-design and shift-left security practices. Essential Requirements 6+ years of experience in information security. 3+ years of dedicated DevSecOps experience. Practical experience with PCI DSS and SOC 2. Proficiency in Kubernetes security: RBAC, network policies, OPA/Gatekeeper, and security policies. Experience with tools such as SonarQube, Trivy, Snyk, Checkov, or Terrascan. Experience managing secrets using Vault or AWS Secrets Manager. Solid knowledge of OWASP Top 10 and supply chain security. Programming or scripting in Python or Go. Advanced technical English. Desirable Plus Certifications such as OSCP, CISSP, CKS, or AWS Security Specialty. Experience in fintech or payment systems. Experience with SIEM. Runtime security using tools such as Falco or Tetragon. Technology Stack SonarQube, Trivy, Snyk, OPA, Kyverno, Vault, AWS Secrets Manager, Falco, Cosign, and Sigstore. If you’re passionate about building secure, automated, and cloud-native platforms, we want to meet you.-Requirements- Minimum education: University / Professional Degree 5 years of experience Keywords: engineers, ingeniera, ing, engineer, senior, sr