Infrastructure Engineer – DevSecOps, Compliance & Cloud
Reports To: Head of Infrastructure & CRA Practice Lead
Experience Level: 6–10 years
About Us
At Codvo, we are committed to building scalable, future-ready data platforms that power business impact. We believe in a culture of innovation, collaboration, and growth, where engineers can experiment, learn, and thrive. Join us to be part of a team that solves complex data challenges with creativity and cutting-edge technology.
About the Role
We are seeking an Infrastructure Engineer (DevSecOps & Compliance) to build and manage secure, compliant, and automated environments supporting CRA-aligned development and testing.
This role focuses on designing infrastructure that embeds security, observability, and compliance automation across hybrid and multi-cloud environments (AWS, Azure, GCP, on-prem).
You’ll collaborate with software, security, and QA teams to implement continuous compliance, policy-as-code, and secure CI/CD practices.
Key Responsibilities
- Design, deploy, and manage secure CI/CD pipelines for multi-platform software development.
- Implement infrastructure-as-code (IaC) using Terraform, Ansible, or Pulumi with compliance guardrails.
- Integrate security scanners (SAST, SCA, DAST, IaC) into pipelines for continuous compliance.
- Manage SBOM generation, artifact signing, and supply chain security automation.
- Monitor and harden cloud workloads, containers, and Kubernetes clusters against vulnerabilities.
- Establish observability frameworks (logging, monitoring, alerting) with compliance tagging.
- Collaborate with auditors to provide infrastructure evidence for CRA, ISO 27001, and SOC 2 certifications.
- Maintain compliance documentation (architecture, controls, and change logs).
Required Skills & Experience
- 6+ years of experience in Infrastructure, DevOps, or Cloud Engineering.
- Hands-on expertise with AWS/Azure/GCP, Docker/Kubernetes, and Terraform.
- Strong knowledge of CI/CD tools: Jenkins, GitHub Actions, GitLab CI, or Azure DevOps.
- Familiarity with security automation and DevSecOps toolchains (Checkov, Trivy, Aqua, Snyk, OPA).
- Experience implementing network and endpoint hardening, least-privilege IAM, and secret management.
- Understanding of compliance frameworks (CRA, NIS2, ISO 27001, SOC 2).
- Excellent scripting ability (Python, Bash, PowerShell, or Go).
Preferred Qualifications
- Bachelor’s or Master’s in Computer Science, Information Security, or related field.
- Certifications: AWS Security Specialty, Terraform Associate, CISSP, or CISA.
- Experience with zero trust, SBOM automation, or policy-as-code environments.
- Prior exposure to industrial or edge computing systems.
Why Join Us
Join a team defining how compliant cloud infrastructure is built and operated. You’ll help global engineering teams achieve secure-by-design infrastructure through automation, resilience, and continuous compliance.