Middle DevSecOps Engineer

   We are looking for a Middle DevSecOps Engineer to join our team and help maintain and improve a secure cloud infrastructure on AWS. Our applications run on Kubernetes (EKS), Cloudflare is used for edge protection, and Wazuh serves as our SIEM / HIDS platform.
  This role is suited for an engineer with hands-on experience who will work within an existing architecture and established best practices, rather than owning the full system design.

Requirements:
AWS / Cloud
 

• 2+ years of commercial experience with AWS
• Hands-on experience with EKS or other managed Kubernetes platforms
• Basic understanding of IAM, VPC, Security Groups, and CloudWatch

Kubernetes / Containers
 

• Experience with Kubernetes (deployments, services, ingress)
• Understanding of Kubernetes RBAC (ability to apply and maintain existing policies)
• Experience with Docker (building and running containers)

Security / Monitoring
 

• Experience with Wazuh or other SIEM / security monitoring solutions
• Understanding of logging, alerting, and basic HIDS principles
• Hands-on experience with Cloudflare (DNS, basic WAF configuration)

DevOps / Automation
 

• Experience with CI/CD tools (GitLab CI, GitHub Actions)
• Infrastructure as Code: Terraform
• Bash or Python for basic automation tasks

Networking
 

• Understanding of HTTP/S, DNS, and TLS
• Basic knowledge of cloud networking concepts

Responsibilities:
 

• Maintain and enhance CI/CD pipelines with integrated security checks
• Support and operate Kubernetes clusters (AWS EKS)
• Configure and maintain Wazuh (agents, basic rules, alerts, dashboards)
• Support and optimize Cloudflare services (DNS, basic WAF rules, rate limiting)
• Deploy and update infrastructure using IaC (Terraform / CloudFormation)
• Manage access controls (AWS IAM, Kubernetes RBAC)
• Monitor logs and security alerts and participate in incident response
• Apply basic hardening practices for containers and EKS nodes
• Collaborate with development teams to ensure secure application deployments
• Configure infrastructure according to CIS benchmarks

Nice to Have:
 

• Experience with security scanning tools (Burp, Snyk, kube-bench)
• Familiarity with AWS Security Hub or GuardDuty
• Basic understanding of Zero Trust principles
• Experience with multi-account AWS environments
• Exposure to security policies or compliance controls
• Experience with ELK Stack

What We Offer:
 

• Work in a team with established processes and mentoring
• Clear growth path toward a Senior DevSecOps Engineer role
• Modern cloud-native technology stack (AWS, Kubernetes, Terraform)
• Flexible work format (remote / hybrid)
• Competitive compensation based on experience