We are Software Mind, an awesome team of engineers who are ready to ramp up any top-notch company’s projects! Our aim? To always be one step ahead. Become part of a multicultural company in constant growth with an excellent work environment certified by Great Place To Work!

Security-first engineer focused on cloud operations and DevOps, with a strong emphasis on hands-on vulnerability remediation and implementation.

Key Responsibilities

• Own the continuous vulnerability remediation process across cloud environments
• Take outputs from security tools (CSPM, Wiz, Palo Alto Prisma) and implement fixes in production
• Perform image-level, server-level, and patch-level updates
• Work closely with development teams on testing, deployment, and releases
• Handle compliance mapping and validation (SOC 2)
• Conduct access control audits and ensure compliance adherence
• Make independent technical decisions with minimal oversight
• Collaborate directly with the security team (Linda, Fausto, Gerald)
• Contribute beyond security scope over time, evolving into broader team responsibilities
• Enforcing HTTPS on S3 buckets via CloudFront decisions
• Updating vulnerable dependencies (e.g., Python libraries)
• Creating and pushing updated container images to production

#LI-DNI

Required Skills & Experience

• Strong DevOps and cloud operations background
• Hands-on experience with AWS and Azure environments
• Proven ability in vulnerability remediation and implementation (not just identification)
• Experience working with security tools such as CSPM, Wiz, or Palo Alto Prisma
• Solid understanding of:
  • Infrastructure and application security controls
  • Patch management and system hardening
  • Access control and compliance practices (SOC 2)
• Experience collaborating with engineering and security teams
• Ability to work independently and make technical decisions

Evaluation Criteria

• Cloud platform expertise (AWS + Azure)
• Strong understanding of security vulnerabilities and remediation approaches
• Practical experience implementing security controls in production environments
• Clear and effective cross-functional communication skills

Interview Process & Evaluation

• Two to three nterview structure planned