Job Summary: BYKON Consulting is seeking a DevSecOps Jr. with experience implementing security in DevOps and cloud environments, primarily AWS. Key Responsibilities: 1. Continuous improvement of security practices in DevOps and cloud environments 2. Automation of resources using Terraform and Ansible 3. Integration of security testing into the CI/CD pipeline At **BYKON Consulting**, we are a boutique of digital experts who enhance people’s experiences through the development of innovative solutions. In this instance, we are actively seeking a **DevSecOps Jr.** with the following qualifications: \- Experience implementing and continuously improving security practices in DevOps and cloud environments (primarily AWS). The ideal candidate must possess foundational knowledge in automation and cloud security. * AWS: o Support secure configuration and administration of AWS services (EC2, S3, IAM, VPC, etc.). o Site-to-Site VPNs o Implement security policies and best practices (IAM, KMS, Security Groups, CloudTrail, Security Hub, WAF). o Automate infrastructure provisioning using Terraform and Ansible. o Monitor compliance and vulnerabilities across cloud infrastructure. Ansible and Terraform: o Create, maintain, and enhance Ansible playbooks for configuration management and secure application deployment. o Develop and maintain Terraform modules, templates, and scripts for infrastructure-as-code provisioning, ensuring integration of security controls. o Automate system and application patching and updates. * Docker: o Build and maintain secure and efficient Docker images. o Manage the container lifecycle, ensuring integration of security practices (scanning, hardening). o Support implementation of vulnerability scanning for container images. * GitHub Actions: o Collaborate on creating and maintaining secure CI/CD pipelines using GitHub Actions. o Integrate static (SAST) and dynamic (DAST) security testing into the CI/CD pipeline. o Automate deployments and audits within the pipeline. * Kubernetes/EKS: o Cluster and service administration. * General: o Stay up to date with DevSecOps trends and industry best practices. * Basic technical English proficiency. Desirable: * Prior experience in security automation projects. * NoSQL, in-memory, and SQL databases. * Scripting knowledge (Python, Bash, Node, etc.) Position Type: Full-time Salary: Starting at $30,000.00 per month Benefits: * Medical expense insurance Experience: * MongoDB: 3 years (Desirable) * NestJS: 3 years (Desirable) * JavaScript: 3 years (Desirable) * React: 3 years (Desirable) Work Location: Remote hybrid at 11530, Polanco II Sección, CDMX