DevOps Security Engineer SOC Automation AI

DevOps Security Engineer – Plataforma & CI/CD

Excelia is seeking a DevOps Security Engineer to lead the construction and operation of our SOC's automation and AI platform. This role will be key in designing the infrastructure, CI/CD pipelines, and observability systems that support security automations, SOAR playbooks, and intelligent agents.

If you are passionate about DevOps, automation, and cybersecurity, and want to work in modern environments with Infrastructure as Code, Kubernetes, and secure pipelines, this opportunity is for you.

🚀 Your Mission

To build and operate the platform supporting the SOC's automation and intelligence, ensuring reproducible deployments through Infrastructure as Code, versioning and traceability of rules, playbooks, and models, and applying security by design principles.

🧩 Responsibilities

• Design and manage cloud infrastructure using Infrastructure as Code (Terraform, Bicep).
• Implement and maintain CI/CD pipelines (Azure DevOps or GitLab) for:
• Sigma rules to SIEM/XDR
• SOAR playbooks
• IAM agents
• Models and datasets
• Manage and operate Docker and Kubernetes-based environments (AKS, GKE).
• Implement observability systems using Prometheus, Grafana, and OpenTelemetry.
• Ensure security in the deployment chain:
• Secret management (Key Vault)
• Vulnerability scanning (SAST/DAST)
• Container security, signatures, and SBOM
• Security policies (OPA)
• Integrate the platform with SIEM, XDR, CTI tools, and ticketing systems (ServiceNow, Jira).
• Manage costs, optimize performance, and apply platform hardening.
• Automate processes using scripting (Python, Bash).

✅ Requirements

• 4–6 years of experience in DevOps environments, with at least 1–2 years in security or SOC environments.
• Solid experience with:
• Terraform (Infrastructure as Code)
• Cloud (Azure and/or GCP)
• Docker and Kubernetes
• CI/CD (Azure DevOps or GitLab)
• Experience in pipeline security (secret management, vulnerability scanning, container security).
• Experience integrating platforms with SIEM, XDR, or event buses.
• Experience in scripting with Python and/or Bash.
• Knowledge of best practices in automation, security, and continuous deployment.

⭐ Highly Valued

• Experience with GitOps (ArgoCD, Flux).
• Experience with tools like OPA, Conftest, Cosign, Sigstore, Trivy, or Grype.
• Experience with SBOM (Syft).
• Knowledge of DataOps or MLOps (MLflow, model registries).
• Experience with platforms like Cortex XSOAR/XSIAM, Devo, or Defender XDR.
• Experience operating observability systems (Grafana, Prometheus, OpenTelemetry).
• Proactive mindset and orientation towards continuous improvement.

🎓 Valuable Certifications

• Microsoft AZ-104 / AZ-400
• Kubernetes CKA / CKAD
• Microsoft SC-100 / SC-200
• CompTIA Security+
• HashiCorp Terraform Associate
• AWS DevOps Engineer
• Microsoft Certified: Security Operations Analyst

📩 Interested in being part of a team building the future of cybersecurity automation? Apply now or contact us directly.

Key skills/competency

• DevOps Security Engineer
• SOC Automation
• AI Security
• CI/CD Pipelines
• Infrastructure as Code
• Kubernetes
• Terraform
• Azure DevOps
• GitLab
• Python