DevSecOps Engineer

Why Valtech? We’re the experience innovation company - a trusted partner to the world’s most recognized brands. To our people we offer growth opportunities, a values-driven culture, international careers and the chance to shape the future of experience. 

The opportunity

At Valtech, you’ll find an environment designed for continuous learning, meaningful impact, and professional growth. Whether you're pioneering new digital solutions, challenging conventional thinking or building the next generation of customer experiences, your work will help transform industries. 

We are proud of: 

• The work we do and the innovation we drive 
• Our values of share, care and dare 
• A workplace culture that fosters creativity, diversity and autonomy 
• Our borderless, global framework, which enables seamless collaboration 

 

The role  

As a DevSecOps Engineer, you will be the link between development, operations, and security. You will work with delivery teams to embed security controls and best practices into pipelines, automate compliance, and ensure our platforms are reliable, resilient, and secure. You will participate in architecture discussions, help detect and remediate vulnerabilities, and continuously improve our DevSecOps practices. 

You will work in a multidisciplinary environment with engineers across the globe, ensuring that security does not block innovation but rather accelerates it.

.You are someone with 5+ years of experience in Security Engineering, or DevSecOps, preferably in large-scale, customer-facing platforms. You have deep expertise in automation, cloud-native security, and CI/CD. You combine technical leadership with strong communication skills, and you are comfortable working in global and multicultural teams. 

You will thrive in this role if you are: 

• A curious problem solver who challenges the status quo 
• A collaborator who values teamwork and knowledge-sharing 
• Excited by the intersection of technology, creativity and data 
• Experienced in Agile methodologies and consulting (a plus) 

Role responsibilities

• Define and implement enterprise-wide DevSecOps standards, patterns, and guardrails. 

• Design and build security automation mechanisms such as secure CI/CD pipelines with integrated SAST, DAST, SCA, IaC scanning, and container security. 

• Design and Implement cloud-native security tooling and platforms. 

• Lead security reviews, audits and threat modeling for high-impact platforms and projects. 

• Guide teams and promote security awareness on secure coding, vulnerability remediation, and cloud security best practices, acting as a Security Subject Matter Expert. 

• Automate compliance and governance requirements at scale. 

• Participate in and lead security incident lifecycle, including RCA, remediation, postmortem analysis, and resilience improvements. 

• Mentor and coach DevOps/DevSecOps engineers across teams. 

• Advocate for and implement practices to reduce toil and scale security automation. 

• Define and/or conduct regular vulnerability assessments and manage remediation efforts 

• Ensure our clients' systems and applications meet regulatory and organizational security standards (e.g. NIST, ISO, SOC 2, PCI DSS, GDPR, etc.) 

• Help define and implement monitoring solutions and participate in incident response and remediation as needed 

• Work closely with development, ops, and security teams to ensure secure delivery of software 

 

Must have qualifications

To be considered for this role, you must meet the following essential qualifications: 

• You have led DevSecOps initiatives in enterprise or high-traffic production environments. 

• You have strong experience with cloud security (Mostly Azure). 

• You are proficient in pythongorustazurekubernetesdockeraidevopsdataproduct