Infrastructure Engineer – DevSecOps, Compliance & Cloud

At Codvo, we are committed to building scalable, future-ready data platforms that power business impact. We believe in a culture of innovation, collaboration, and growth, where engineers can experiment, learn, and thrive. Join us to be part of a team that solves complex data challenges with creativity and cutting-edge technology.

• Design, deploy, and manage secure CI/CD pipelines for multi-platform software development.
• Implement infrastructure-as-code (IaC) using Terraform, Ansible, or Pulumi with compliance guardrails.
• Integrate security scanners (SAST, SCA, DAST, IaC) into pipelines for continuous compliance.
• Manage SBOM generation, artifact signing, and supply chain security automation.
• Monitor and harden cloud workloads, containers, and Kubernetes clusters against vulnerabilities.
• Establish observability frameworks (logging, monitoring, alerting) with compliance tagging.
• Collaborate with auditors to provide infrastructure evidence for CRA, ISO 27001, and SOC 2 certifications.
• Maintain compliance documentation (architecture, controls, and change logs).

• 6+ years of experience in Infrastructure, DevOps, or Cloud Engineering.
• Hands-on expertise with AWS/Azure/GCP, Docker/Kubernetes, and Terraform.
• Strong knowledge of CI/CD tools: Jenkins, GitHub Actions, GitLab CI, or Azure DevOps.
• Familiarity with security automation and DevSecOps toolchains (Checkov, Trivy, Aqua, Snyk, OPA).
• Experience implementing network and endpoint hardening, least-privilege IAM, and secret management.
• Understanding of compliance frameworks (CRA, NIS2, ISO 27001, SOC 2).
• Excellent scripting ability (Python, Bash, PowerShell, or Go).

• Bachelor’s or Master’s in Computer Science, Information Security, or related field.
• Certifications: AWS Security Specialty, Terraform Associate, CISSP, or CISA.
• Experience with zero trust, SBOM automation, or policy-as-code environments.
• Prior exposure to industrial or edge computing systems.