We are seeking a proactive and security-focused DevSecOps Engineer to help embed security best practices across our cloud and application platforms. The ideal candidate has approximately 3 years of hands-on experience with AWS, Kubernetes, and Docker, and a strong understanding of DevOps workflows with a security-first mindset.
Integrate security practices into CI/CD pipelines (DevSecOps)
Design, deploy, and maintain secure AWS cloud infrastructure
Secure and manage Kubernetes clusters and containerized workloads
Implement container security best practices for Docker
Automate security checks such as vulnerability scanning, policy enforcement, and compliance
Manage secrets, access controls, and identity policies (IAM)
Monitor, detect, and respond to security incidents and vulnerabilities
Conduct security reviews, risk assessments, and remediation activities
Collaborate with engineering teams to promote secure coding and deployment practices
Around 3 years of experience in DevSecOps, DevOps, or Cloud Security roles
Strong hands-on experience with AWS services (IAM, VPC, EC2, EKS, S3, CloudWatch, etc.)
Practical experience with Kubernetes security (RBAC, network policies, pod security)
Solid experience with Docker and container security concepts
Experience integrating security tools into CI/CD pipelines (Gitlab)
Familiarity with Linux systems, networking, and cloud security fundamentals
Understanding of vulnerability management and threat modeling
Ability to work in an agile, collaborative environment
Experience with Infrastructure as Code tools (Terraform, CloudFormation)
Familiarity with container and cloud security tools (Trivy, Aqua, Prisma Cloud, Falco)
Knowledge of monitoring and logging tools (Prometheus, Grafana, ELK, CloudWatch)
AWS, Kubernetes, or security certifications (e.g., AWS Security Specialty, CKS)
Experience with compliance frameworks (ISO 27001, SOC 2, CIS Benchmarks)
Seniority:
Expert
Primary Location:
DE - Darmstadt - Europahaus
Contract Type:
Employee-Permanent
Hybrid Working:
Hybrid
Leonardo is a global security company that realises multi-domain technological capabilities in AD&S.
With over 60,000 employees worldwide, the company has a significant industrial presence in Italy, the UK, Poland, and the US. It also has a commercial presence in 150 countries through subsidiaries, joint ventures and investments. A key player in major international strategic programmes, it is a technological and industrial partner of governments, defence administrations, institutions and companies.
In 2024, Leonardo recorded consolidated revenues of €17.8 bn, new orders for €20.9 bn and invested €2.5 bn in R&D. Innovation, continuous research, digitalisation and sustainability are the pillars of its business worldwide.
Stefano Pontecorvo has been the Chairman since 9 May 2023 and Roberto Cingolani has been the CEO and General Manager since 9 May 2023.
Follow Leonardo on social media:
➡️https://x.com/Leonardo_live
➡️https://www.instagram.com/leonardo_company/
➡️https://www.youtube.com/leonardocompany
