PitchMeAI
Excelia

DevOps Sec - Plataforma & CI/CD (SOC Automation & AI)

Excelia Β· Spain

  • Hybrid
  • Full-time
  • €60,000 / year
  • Spain

Job highlights

  • Lead SOC automation and AI platform development.
  • Design and manage cloud infrastructure with IaC.
  • Implement secure CI/CD pipelines for security tools.
  • Operate Docker, Kubernetes, and observability systems.
  • Ensure security across the deployment chain.

About the role

DevOps Security Engineer – Plataforma & CI/CD

Excelia is seeking a DevOps Security Engineer to lead the construction and operation of our SOC's automation and AI platform. This role will be key in designing the infrastructure, CI/CD pipelines, and observability systems that support security automations, SOAR playbooks, and intelligent agents.

If you are passionate about DevOps, automation, and cybersecurity, and want to work in modern environments with Infrastructure as Code, Kubernetes, and secure pipelines, this opportunity is for you.

πŸš€ Your Mission

To build and operate the platform supporting the SOC's automation and intelligence, ensuring reproducible deployments through Infrastructure as Code, versioning and traceability of rules, playbooks, and models, and applying security by design principles.

🧩 Responsibilities

  • Design and manage cloud infrastructure using Infrastructure as Code (Terraform, Bicep).
  • Implement and maintain CI/CD pipelines (Azure DevOps or GitLab) for:
    • Sigma rules to SIEM/XDR
    • SOAR playbooks
    • IAM agents
    • Models and datasets
  • Manage and operate Docker and Kubernetes-based environments (AKS, GKE).
  • Implement observability systems using Prometheus, Grafana, and OpenTelemetry.
  • Ensure security in the deployment chain:
    • Secret management (Key Vault)
    • Vulnerability scanning (SAST/DAST)
    • Container security, signatures, and SBOM
    • Security policies (OPA)
  • Integrate the platform with SIEM, XDR, CTI tools, and ticketing systems (ServiceNow, Jira).
  • Manage costs, optimize performance, and apply platform hardening.
  • Automate processes using scripting (Python, Bash).

βœ… Requirements

  • 4–6 years of experience in DevOps environments, with at least 1–2 years in security or SOC environments.
  • Solid experience with:
    • Terraform (Infrastructure as Code)
    • Cloud (Azure and/or GCP)
    • Docker and Kubernetes
    • CI/CD (Azure DevOps or GitLab)
  • Experience in pipeline security (secret management, vulnerability scanning, container security).
  • Experience integrating platforms with SIEM, XDR, or event buses.
  • Experience in scripting with Python and/or Bash.
  • Knowledge of best practices in automation, security, and continuous deployment.

⭐ Highly Valued

  • Experience with GitOps (ArgoCD, Flux).
  • Experience with tools like OPA, Conftest, Cosign, Sigstore, Trivy, or Grype.
  • Experience with SBOM (Syft).
  • Knowledge of DataOps or MLOps (MLflow, model registries).
  • Experience with platforms like Cortex XSOAR/XSIAM, Devo, or Defender XDR.
  • Experience operating observability systems (Grafana, Prometheus, OpenTelemetry).
  • Proactive mindset and orientation towards continuous improvement.

πŸŽ“ Valuable Certifications

  • Microsoft AZ-104 / AZ-400
  • Kubernetes CKA / CKAD
  • Microsoft SC-100 / SC-200
  • CompTIA Security+
  • HashiCorp Terraform Associate
  • AWS DevOps Engineer
  • Microsoft Certified: Security Operations Analyst

πŸ“© Interested in being part of a team building the future of cybersecurity automation? Apply now or contact us directly.

Key skills/competency

  • DevOps Security Engineer
  • SOC Automation
  • AI Security
  • CI/CD Pipelines
  • Infrastructure as Code
  • Kubernetes
  • Terraform
  • Azure DevOps
  • GitLab
  • Python

Skills & topics

  • DevOps Security Engineer
  • SOC Automation
  • AI Security
  • CI/CD
  • Infrastructure as Code
  • Kubernetes
  • Terraform
  • Azure DevOps
  • GitLab
  • Python
  • Cybersecurity
  • Cloud Security
  • Azure
  • GCP
  • SOAR

How to get hired

  • Tailor your resume: Highlight experience with DevOps, security, SOC automation, IaC (Terraform), CI/CD (Azure DevOps/GitLab), Kubernetes, and scripting (Python/Bash).
  • Showcase relevant skills: Emphasize experience with cloud platforms (Azure/GCP), vulnerability scanning, secret management, and SIEM/XDR integrations.
  • Address preferred qualifications: If applicable, detail your experience with GitOps, SBOM tools, or specific security platforms.
  • Prepare for technical interviews: Be ready to discuss IaC, CI/CD best practices, containerization, security principles, and scripting scenarios.
  • Research Excelia's culture: Understand their focus on cybersecurity automation and AI to align your answers with their mission.

Technical preparation

Master Terraform for IaC and cloud resource management.,Practice building secure CI/CD pipelines with Azure DevOps/GitLab.,Get hands-on with Kubernetes (AKS/GKE) and Docker.,Write automation scripts in Python or Bash.

Behavioral questions

Describe a complex security automation challenge you solved.,How do you ensure security in CI/CD pipelines?,How do you handle infrastructure as code versioning?,Discuss your experience with cloud security best practices.

Frequently asked questions

What are the key responsibilities for a DevOps Security Engineer at Excelia?
The key responsibilities for a DevOps Security Engineer at Excelia involve building and operating the SOC's automation and AI platform, designing cloud infrastructure using Infrastructure as Code, implementing secure CI/CD pipelines, managing Docker and Kubernetes environments, and ensuring security across the deployment chain. This includes integrating with SIEM/XDR tools and automating processes.
What experience is required for the DevOps Security Engineer role at Excelia?
Excelia requires 4-6 years of experience in DevOps environments, with at least 1-2 years specifically in security or SOC roles. Essential experience includes Terraform, Azure/GCP, Docker/Kubernetes, Azure DevOps/GitLab, pipeline security, SIEM/XDR integration, and scripting with Python/Bash.
Which cloud platforms are most relevant for this DevOps Security Engineer position at Excelia?
For this DevOps Security Engineer position at Excelia, experience with Azure and/or Google Cloud Platform (GCP) is highly relevant. The role involves designing and managing cloud infrastructure, and familiarity with these platforms is crucial for success.
What kind of security automation experience is Excelia looking for in this role?
Excelia is looking for experience in security automation related to SOC operations. This includes implementing CI/CD pipelines for security rules (Sigma), SOAR playbooks, and integrating with SIEM/XDR tools. Security across the deployment chain, such as secret management and vulnerability scanning, is also a key focus.
Are certifications important for the DevOps Security Engineer role at Excelia?
While not strictly required, certain certifications are considered valuable for the DevOps Security Engineer role at Excelia. These include Microsoft certifications (AZ-104, AZ-400, SC-100, SC-200), Kubernetes certifications (CKA/CKAD), CompTIA Security+, HashiCorp Terraform Associate, AWS DevOps Engineer, and Microsoft Certified: Security Operations Analyst.
What is the work arrangement for the DevOps Security Engineer position at Excelia?
The job description indicates the position is located in Spain ('EspaΓ±a') and focuses on building and operating a platform. While not explicitly stated as remote or on-site, the mention of specific locations suggests a primary focus within Spain, and it's likely to be hybrid or on-site, with potential for remote work within Spain depending on team structure.