Reports To: Head of Infrastructure & CRA Practice Lead
Experience Level: 6-10 years
About Us
At Codvo, we are committed to building scalable, future-ready data platforms that power business impact. We believe in a culture of innovation, collaboration, and growth, where engineers can experiment, learn, and thrive. Join us to be part of a team that solves complex data challenges with creativity and cutting-edge technology.
About the Role
We are seeking an Infrastructure Engineer (DevSecOps & Compliance) to build and manage secure, compliant, and automated environments supporting CRA-aligned development and testing.
This role focuses on designing infrastructure that embeds security, observability, and compliance automation across hybrid and multi-cloud environments (AWS, Azure, GCP, on-prem).
You'll collaborate with software, security, and QA teams to implement continuous compliance, policy-as-code, and secure CI/CD practices.
Key Responsibilities
Design, deploy, and manage secure CI/CD pipelines for multi-platform software development.
Implement infrastructure-as-code (IaC) using Terraform, Ansible, or Pulumi with compliance guardrails.
Integrate security scanners (SAST, SCA, DAST, IaC) into pipelines for continuous compliance.
Manage SBOM generation, artifact signing, and supply chain security automation.
Monitor and harden cloud workloads, containers, and Kubernetes clusters against vulnerabilities.
Establish observability frameworks (logging, monitoring, alerting) with compliance tagging.
Collaborate with auditors to provide infrastructure evidence for CRA, ISO 27001, and SOC 2 certifications.
Maintain compliance documentation (architecture, controls, and change logs).
Required Skills & Experience
6+ years of experience in Infrastructure, DevOps, or Cloud Engineering.
Hands-on expertise with AWS/Azure/GCP, Docker/Kubernetes, and Terraform.
Strong knowledge of CI/CD tools: Jenkins, GitHub Actions, GitLab CI, or Azure DevOps.
Familiarity with security automation and DevSecOps toolchains (Checkov, Trivy, Aqua, Snyk, OPA).
Experience implementing network and endpoint hardening, least-privilege IAM, and secret management.
Understanding of compliance frameworks (CRA, NIS2, ISO 27001, SOC 2).
Excellent scripting ability (Python, Bash, PowerShell, or Go).
Preferred Qualifications
Bachelor's or Master's in Computer Science, Information Security, or related field.
Certifications: AWS Security Specialty, Terraform Associate, CISSP, or CISA.
Experience with zero trust, SBOM automation, or policy-as-code environments.
Prior exposure to industrial or edge computing systems.
Why Join Us
Join a team defining how compliant cloud infrastructure is built and operated. You'll help global engineering teams achieve secure-by-design infrastructure through automation, resilience, and continuous compliance.
Beware of fraud agents! do not pay money to get a job
MNCJobsIndia.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.