DevSecOps Engineer Junior

Description

Job Summary: We are seeking a passionate DevSecOps Engineer Junior with expertise in cybersecurity and automation to integrate security into modern pipelines and protect critical environments. Key Highlights: 1. Integration into a high-performance multidisciplinary team 2. Participation in innovative projects using cutting-edge technologies 3. Access to official training and certifications in Open Source technologies DESCRIPTION Join HOPLA! and help us secure the software development lifecycle At **Hopla! Software**, we help organizations scale their technological capabilities through extreme automation and architectural robustness. Along this journey, integrated security and proactive protection are the pillars that ensure trust in our clients’ digital transformation. We are not looking for someone who merely "reviews code", but for a **DevSecOps Engineer Junior** passionate about cybersecurity and automation—capable of integrating security controls into modern pipelines and protecting critical environments. You will join a high-performance multidisciplinary team, participating in the implementation of state-of-the-art practices in identity management, secret protection, and cloud security. If you are passionate about the **Open Source** ecosystem, motivated by the challenge of securing **Kubernetes**, and eager to master tools like **HashiCorp Vault**, we want to meet you. Your Mission In this role, you will be a key contributor to securing the Software Development Lifecycle (SDLC): * **Security Integration:** Collaborate on embedding security controls within CI/CD pipelines (GitLab, GitHub Actions, Jenkins). * **Secrets and Identity Management:** Support IAM management and protection of critical credentials using **HashiCorp Vault**. * **Automation of Security Controls:** Participate in automating security policies across Cloud and On\-premise environments. * **Security Tool Operations:** Configure and operate **SAST, DAST, and SCA** analysis tools within the development workflow. * **Vulnerability Remediation:** Collaborate on detection, analysis, and resolution of vulnerabilities in applications and infrastructure. * **Culture and Documentation:** Document processes and standards, and promote organization-wide security best practices. WHAT WE OFFER? * **Permanent Contract:** Professional stability from day one. * **Professional Challenge:** Participate in innovative application modernization projects using cutting-edge technologies. * **Continuous Training Plan:** Access to official training and certifications in Open Source technologies. * **Real Work-Life Balance:** Flexible working arrangements and objective-oriented focus. * **Remote Work Model:** Full flexibility to balance your personal and professional life. * **Private Health Insurance:** We care about you and your health. * **Work Environment:** Integration into a highly qualified team with an open innovation and collaborative culture. REQUIREMENTS **Minimum Requirements:** * **Education:** Final-year student in Computer Engineering, Telecommunications, Cybersecurity, or related fields. * **Technical Knowledge:** Fundamental principles of **DevOps and DevSecOps**. * **CI/CD Tools:** Basic experience with GitLab CI, GitHub Actions, or Jenkins. * **Application Security:** Familiarity with SAST, DAST, and SCA (dependency analysis). * **Systems and Scripting:** Experience in **Linux** environments and basic scripting skills (Bash, Python, or similar). * **Containers:** Basic proficiency with **Docker**. * **Skills:** Proactivity, attention to detail, and ability to learn independently. **Desirable Requirements:** * **Certifications:** Specific training or certifications in Cybersecurity or Cloud. * **Secrets Management:** Knowledge or experience with **HashiCorp Vault** (highly valued). * **Cloud:** Basic knowledge of AWS, Azure, or GCP. * **Orchestration:** Familiarity with **Kubernetes**. * **Identity:** Concepts of identity and access management (IAM).