As a DevSecOps Engineer at Pismo, you will be a key player in embedding security into every stage of our software development lifecycle. You’ll work closely with engineering, platform, and GRC teams to ensure our cloud-native infrastructure and applications are secure, scalable, and compliant with industry standards.
What you will do:
- Design and implement security controls in CI/CD pipelines (Shift Left).
- Integrate SAST, SCA, and DAST tools into development workflows.
- Collaborate with developers to remediate vulnerabilities early in the lifecycle.
- Manage and monitor cloud security configurations (AWS, EKS, IAM, GuardDuty).
- Develop and maintain infrastructure-as-code (Terraform) with security best practices.
- Support red team exercises and penetration testing remediation.
- Ensure compliance with PCI DSS and secure handling of sensitive data (e.g., PAN, PII).
- Contribute to threat modeling, risk assessments, and incident response planning.
This is a remote position. A remote position does not require job duties be performed within proximity of a Visa office location. Remote positions may be required to be present at a Visa office with scheduled notice. #LI-Remote
Qualifications
Minimum qualifications:
- 2+ years of relevant work experience with a Bachelor’s Degree OR 5+ years of relevant work experience
- Previous experience with DevSecOps process or configuration of CICD pipelines
- English proficiency: B1+ – You’ll need to be comfortable joining weekly team meetings in English.
- Good knowledge of security best practices
- Familiarity with scanning tools like Checkmarx, SonarQube, or similar
- Be based in Brazil
Nice to have:
- Bachelor’s degree completed in Computer Science, Information Systems, Software Engineering, or related fields (If not completed, expected graduation by the end of 2025 or early 2026)
- Familiarity with PCI DSS
- Experience with threat modeling
- Experience working with AWS
- Development experience
- Terraform and YAML language
