Senior Cloud DevSecOps Engineer

Itexus is looking for a Cloud DevSecOps Engineer to join our DevOps team.

About the Client
Our client is a global provider of technology and information services with a strong focus on aviation. Their software solutions improve flight safety, enhance aircraft performance, and streamline operations across general, business, and commercial aviation, as well as for defense organizations and OEMs.

About the Role
We are seeking an experienced Senior Cloud DevSecOps Engineer to take a leading role in designing, developing, and automating security policies within a modern cloud infrastructure. You will collaborate closely with development, SecOps, and infrastructure teams to embed security across the entire engineering lifecycle.

Requirements

• 6+ years of hands-on experience in DevSecOps, Cloud Security, or DevOps
  
• Solid practical experience with AWS and/or Azure
  
• Proven expertise in implementing security controls within CI/CD pipelines (e.g., GitLab, Kubernetes, IAM)
  
• Proficiency in two or more scripting/programming languages (e.g., Python, Bash, Go)
  
• Hands-on experience with Infrastructure as Code (IaC) using Terraform or CloudFormation
  
• Strong grasp of “security by design” and “privacy by design” principles
  
• Familiarity with security testing tools: SAST, DAST, and SCA
  
• Experience with SOAR platforms, security monitoring, and incident response
  
• Ability to work effectively in cross-functional, multidisciplinary teams
  
• Bachelor’s or Master’s degree in Computer Science, Information Systems, or a related technical field
  

Key Responsibilities

• Design and implement cloud security strategies across the DevOps lifecycle
  
• Integrate security best practices and tooling into CI/CD pipelines
  
• Lead and grow the Security Champions program to promote a secure development culture
  
• Perform risk assessments, security audits, and ensure continuous security monitoring
  
• Support compliance efforts and actively contribute to regulatory audits
  
• Respond to security incidents and drive automation of incident response processes
  

Nice to Have

• Experience with tools like CrowdStrike, Palo Alto Networks, or Active Directory
  
• Strong knowledge of compliance frameworks: ISO 27001, SOC 2, GDPR
  
• Background in aviation or related regulated industries
  
• Involvement in regulatory compliance and audit processes
  

Work Conditions

• Flexible working hours, including occasional evening and weekend availability
  
• Availability for handover sessions across time zones
  
• Participation in on-call support for production environments
  
• Strong troubleshooting skills and the ability to work effectively under pressure
  

Proactive mindset with the ability to drive cross-team collaboration and execution.

We look forward to sharing more about the company when you meet us!