Senior DevSecOps Engineer
Xebia
full-time
Posted on:
Location Type: Remote
Location: Bulgaria
Visit company websiteExplore more
Job Level
About the role
- Implementing centralized security and compliance guardrails across AWS accounts
- Automating infrastructure and network provisioning using Terraform and AWS Cloud WAN
- Designing and enforcing Policy-as-Code (OPA / Rego) to prevent non-compliant configurations
- Building and maintaining Account Factory for Terraform (AFT) and CI/CD pipelines for infrastructure
- Delivering secure, centralized egress architectures using AWS Network Firewall
- Monitoring and responding to security risks in multi-account AWS environments
- Collaborating with global teams operating in US (EST) hours
Requirements
- Hands-on experience in AWS, including: AWS Cloud WAN
- AWS Network Firewall
- AWS Control Tower
- Strong background in Terraform and infrastructure automation
- Proven experience with Policy-as-Code (OPA/Rego) and CI/CD pipelines
- Solid understanding of cloud security, governance, and compliance best practices
- Ability to work in US (EST) business hours
- Strong English communication skills
- AWS certifications (Security, Advanced Networking, Solutions Architect) - Nice to have
- Experience with enterprise-scale multi-account environments - Nice to have
- Knowledge of automated risk analysis or AI-driven compliance tools - Nice to have
Benefits
- Culture that actively support your growth via Guilds, Labs, and personal development budgets — for both tech and soft skills.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
AWSTerraformPolicy-as-CodeOPARegoCI/CD pipelinescloud securityinfrastructure automationnetwork provisioningcompliance best practices
Soft Skills
communication skillscollaboration
Certifications
AWS SecurityAWS Advanced NetworkingAWS Solutions Architect