Junior DevSecOps Engineer

Description

Job Summary: We are looking for a Junior DevSecOps Engineer passionate about cybersecurity and automation to protect the software development lifecycle using cutting-edge practices. Key Highlights: 1. Integration of security controls into CI/CD pipelines 2. Secret and identity management with HashiCorp Vault 3. Participation in innovative application modernization projects DESCRIPTION Join HOPLA! and help us secure the software development lifecycle At **Hopla! Software**, we help organizations scale their technological capabilities through extreme automation and architectural robustness. In this journey, integrated security and proactive protection are the cornerstones that ensure trust in our clients’ digital transformation. We are not looking for someone who merely "reviews code", but for a **Junior DevSecOps Engineer** passionate about cybersecurity and automation — capable of integrating security controls into modern pipelines and protecting critical environments. You will join a high-performing, multidisciplinary team, contributing to the implementation of state-of-the-art practices in identity management, secret protection, and cloud security. If you are passionate about the **Open Source** ecosystem, motivated by the challenge of Kubernetes security, and eager to master tools like **HashiCorp Vault**, we want to meet you. Your Mission In this role, you will be a key contributor to securing the Software Development Lifecycle (SDLC): * **Security Integration:** Collaborate on embedding security controls into CI/CD pipelines (GitLab, GitHub Actions, Jenkins). * **Secret and Identity Management:** Support IAM management and protection of critical credentials using **HashiCorp Vault**. * **Automation of Security Controls:** Participate in automating security policies across Cloud and On\-premise environments. * **Security Tool Operations:** Configure and operate **SAST, DAST, and SCA** analysis tools within the development workflow. * **Vulnerability Remediation:** Collaborate on detecting, analyzing, and resolving flaws in applications and infrastructure. * **Culture and Documentation:** Document processes and standards, and promote organization-wide security best practices. WHAT WE OFFER? * **Permanent Contract:** Professional stability from day one. * **Professional Challenge:** Participation in innovative application modernization projects using cutting-edge technologies. * **Continuous Training Plan:** Access to official training and certifications in Open Source technologies. * **Real Work-Life Balance:** Flexible working arrangements and objective-oriented approach. * **Remote Work Model:** Full flexibility to balance your personal and professional life. * **Private Health Insurance:** We care about you and your health. * **Work Environment:** Integration into a highly skilled team with a culture of open innovation and collaboration. REQUIREMENTS **Minimum Requirements:** * **Education:** Final-year student in Computer Engineering, Telecommunications, Cybersecurity, or related fields. * **Technical Knowledge:** Fundamental principles of **DevOps and DevSecOps**. * **CI/CD Tools:** Basic experience with GitLab CI, GitHub Actions, or Jenkins. * **Application Security:** Familiarity with SAST, DAST, and SCA (dependency analysis). * **Systems and Scripting:** Experience in **Linux** environments and basic scripting (Bash, Python, or similar). * **Containers:** Basic proficiency with **Docker**. * **Skills:** Proactivity, attention to detail, and ability to learn autonomously. **Desirable Requirements:** * **Certifications:** Specialized training or certifications in Cybersecurity or Cloud. * **Secret Management:** Knowledge or experience with **HashiCorp Vault** (highly valued). * **Cloud:** Basic knowledge of AWS, Azure, or GCP. * **Orchestration:** Familiarity with **Kubernetes**. * **Identity:** Concepts of identity and access management (IAM).