DevOps Engineer, Security

Job Description:

• Execute neoBIM’s DevOps strategy, combining strategic foresight with hands-on implementation.
• Embed DevSecOps principles into every stage of development — from secure code scanning and dependency management to vulnerability assessment and threat modeling.
• Oversee the end-to-end build and operation of neoBIM’s infrastructure: from Linux servers, containers and cloud environments to databases and monitoring.
• Design CI/CD pipelines, automate workflows with GitHub Actions and ensure the engineering team can deliver quickly and safely.
• Use Terraform to manage and evolve scalable cloud infrastructure.
• Implement monitoring, alerting and incident response to keep our services resilient.
• Work closely with engineering, product and leadership to align DevOps with business goals.

Requirements:

• Solid understanding of Linux systems administration, shell scripting and performance tuning.
• Expertise in building, running and maintaining containerized applications.
• Hands-on experience with core AWS services (EC2, S3, RDS, IAM, Lambda, etc.) to design scalable infrastructures.
• Strong knowledge of PostgreSQL, including optimization, backup/restore and high availability setups.
• Experience deploying modern web applications via Vercel, including CI/CD integration.
• Advanced use of Infrastructure as Code to manage and scale cloud infrastructure reproducibly.
• Proven ability to set up and maintain repositories, branching strategies and automated workflows.
• Familiarity with tools such as Prometheus, Grafana or Datadog for metrics, alerting and observability.
• Experience in agile project tracking and integration with developer workflows.
• Deep understanding of Identity and Access Management, enforcing least-privilege principles and secure role-based access across AWS and CI/CD systems.
• Experience integrating automated code and container scans (e.g. Trivy, Snyk, Dependabot) and applying system hardening best practices.
• Ability to read and understand TypeScript code to better support developer teams (nice to have).
• Knowledge of implementing real-time communication channels between client and server (nice to have).
• Experience integrating infrastructure monitoring and automation alerts into Slack for team collaboration (nice to have).
• Hands-on use of tools like HashiCorp Vault, AWS Secrets Manager, or GitHub Encrypted Secrets for secure credentials handling (nice to have).

Benefits:

• Attractive Compensation & Growth Path
• Strategic Ownership of High-Impact AI Initiatives
• Access to World-Class Infrastructure
• A Culture of Deep Tech and Real-World Application
• Flexibility with remote first work environment and a great team that shapes the future

Apply tot his job Apply To this Job