DevSecOps
Growe welcomes those who are excited to:
-
Build and own the DevSecOps function from the ground up (in the security team), defining strategy, roadmap, priorities, and success metrics;
-
Assess the current security posture of applications, infrastructure, cloud environments, and development processes;
-
Design and implement security controls across the software development lifecycle;
-
Establish and maintain secure CI/CD practices, including security gates and automated validation processes;
-
Integrate security checks into engineering workflows with a strong focus on automation and developer experience;
-
Build and operate vulnerability management processes, including triage, prioritization, remediation tracking, and reporting;
-
Define and implement cloud security standards, guardrails, and best practices across AWS, Azure, or GCP environments;
-
Design and enforce Kubernetes and container security controls, including RBAC, secrets management, network segmentation, and runtime protection;
-
Develop Infrastructure-as-Code security standards and policy-as-code controls;
-
Integrate security logs and events into SIEM to support monitoring, threat detection, and incident response;
-
Create security standards, technical guidelines, and operational procedures for Engineering and Platform teams;
-
Support security incident investigations related to cloud, infrastructure, CI/CD, application vulnerabilities, exposed credentials, and supply-chain threats.
We need your professional experience:
-
2+ years of hands-on experience in DevSecOps, Cloud Security, or Security Engineering;
-
Experience leading security initiatives, projects, or programs with significant ownership and autonomy;
-
Proven experience building security processes, tooling, or security programs from scratch;
-
Hands-on experience integrating security controls into CI/CD pipelines without negatively impacting engineering productivity;
-
Experience with containerized environments and Kubernetes security;
-
Experience working with cloud platforms (AWS);
-
Practical experience with Infrastructure as Code tools such as Terraform, Helm, or Ansible;
-
Experience integrating security logs and events with SIEM platforms and supporting detection, monitoring, and incident response use cases;
-
Ability to balance security requirements with business objectives and engineering velocity;
- Experience with Python will be a plus;
-
English - Intermediate+ or higher.
We appreciate if you have those personal features:
-
Good communication skills;
-
Multitasking, quick task execution;
-
Responsibility, attention to detail.
We are seeking those who align with our core values:
-
GROWE TOGETHER: Our team is our main asset. We work together and support each other to achieve our common goals;
-
DRIVE RESULT OVER PROCESS: We set ambitious, clear, measurable goals in line with our strategy and driving Growe to success;
-
BE READY FOR CHANGE: We see challenges as opportunities to grow and evolve. We adapt today to win tomorrow.
Apply for this job
*
indicates a required field

