Corus Consulting is a consulting firm with more than 15 years of experience with different clients worldwide; we have presence in Europe, United States, Asia and Mexico.
We are looking for your talent to work as:
DevSecOps Engineer
Modality of work:
Remote (Madrid).
Task Descriptions:
• Design, implement, and maintain secure CI/CD pipelines for application build, test, and deployment.
• Integrate security scanning, compliance checks, and vulnerability management into development and deployment workflows.
• Automate infrastructure provisioning, configuration, and application deployment using modern DevSecOps tools.
• Collaborate with development, QA, security, and operations teams to ensure security is embedded throughout the SDLC.
• Support and enhance containerization, orchestration, and cloud environments with a strong focus on security best practices.
Candidate Must-Have Skills, Requirements and Nice-to -Have Skills:
* CI/CD, Version Control & Security Integration: Experience building enterprise-grade CI/CD pipelines.
* GitHub (branching, PR workflows, GitHub Actions), GitHub Actions (secure workflows, secrets management, runner configuration), Jenkins (scripted/declarative pipelines, shared libraries),
* SonarQube (code quality, SAST), Fortify (static code analysis, security scanning).
* Experience setting up artifact repositories (Nexus, JFrog, ECR).
* Configuration Management & Automation: Ansible (roles, playbooks, secure inventory handling). Puppet (manifests, modules, environment management). Strong understanding of Infrastructure as Code (IaC) concepts and tooling (Terraform or CloudFrormation).
* Scripting & Development : Bash, Python, Groovy (both for Jenkins and development). Ability to write automation scripts.
* Cloud : EC2, S3, IAM (roles, policies, least privilege), VPC networking basics, AWS CloudWatch, SSM, ECS/EKS.
* Nice to have : Docker, Openshift, Helm.