DevOps Security Analyst
The Security DevOps Engineer (DevSecOps) is a hands-on technical role responsible for integrating security practices into the software delivery lifecycle, from code commit to production deployment. Working within a collaborative engineering team, this role contributes to the design and operation of secure CI/CD pipelines, cloud and on-premises infrastructure hardening, and compliance automation across distributed systems environments.
The successful candidate is a self-driven engineer who brings both security expertise and strong development skills. This individual is comfortable independently owning workstreams, participating in code reviews and threat modeling exercises, and partnering with senior engineers and cross-functional teams on broader platform initiatives.
This role requires collaboration with geographically distributed teams and may occasionally require after-hours availability.
Work Modality
This position may be offered in one of the following formats, in accordance with AURA’s Teleworking Protocols:
On-site in La Serena, Chile
Full or Hybrid Teleworking
Essential Functions
Develop, deploy, configure, test, and maintain DevOps services
Build, maintain, and improve secure CI/CD pipelines by integrating automated security checks including SAST, SCA, secret scanning, and container image scanning
Implement and enforce Infrastructure-as-Code security controls, policy-as-code rules, and automated compliance checks across cloud environments
Contribute to the hardening of Kubernetes clusters and containerized workloads, including network policies, access controls, and image security standards
Provide technical guidance and support to upper management throughout decision-making processes
Participate in threat modeling sessions for new features and system changes to identify and document security risks
Assist in security incident response efforts, including investigation, containment, and post-incident reviews
Monitor infrastructure and application security posture using observability and alerting tools; escalate anomalies as appropriate
Collaborate with development teams to promote secure coding practices and contribute to internal security documentation and guidelines
Participate in code and architecture reviews with a security-focused perspective
Mentor and support less experienced engineers.
Other Functions
Perform other duties as assigned
Required Education, Experience, Skills & Abilities
4+ years of experience in software engineering, platform engineering, or a security-adjacent technical role
Working proficiency in at least one programming or scripting language such as Python, Go, Bash, or Ruby
Hands-on experience with Kubernetes and containerized workloads, including basic security configuration and troubleshooting
3+ years of experience with Git-based workflows, including branching strategies, code reviews, and pull requests
Practical experience with at least one major cloud provider (AWS, GCP, or Azure) and its core security services
Experience working with CI/CD platforms
Familiarity with Infrastructure-as-Code tools such as Terraform or Ansible
Knowledge of security scanning tools such as Trivy, Semgrep, Checkov, or similar technologies
Strong written and verbal communication skills in English, including the ability to clearly document findings and explain security concepts to peers
Experience mentoring junior engineers
Clean driving record
Ability (or willingness to learn) to drive 4WD vehicles
Availability to work at observatory summit facilities above 2500 meters 2–3 times per week unless hired as full teleworking
Preferred Qualifications
Certified Kubernetes Administrator (CKA) or Certified Kubernetes Security Specialist (CKS) certification
Experience with policy-as-code frameworks such as OPA or Kyverno
Familiarity with secrets management platforms
Exposure to software supply-chain security concepts including SBOM, Sigstore/Cosign, or SLSA
Experience with monitoring and observability stacks such as Prometheus, Grafana, ELK, or Loki
Experience writing Helm charts or working with Kubernetes package management
Familiarity with configuration management tools such as Ansible, Puppet, or Salt
AWS Certified Security – Specialty, AWS Certified DevOps Engineer, or equivalent cloud security certifications
Contributions to open-source security or infrastructure projects
Hands-on experience with Infrastructure as Code
Extensive experience with software-defined storage platforms such as Ceph.
Physical Demands
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Must be able to remain in a stationary position at least 50% of the time.
Occasional need to move about inside the office environment to access files, office tools, attendance in a meeting room, etc.
Constantly operates a computer and other office productivity tools that require fine motor skills, such as a calculator, copy machine, computer printer, etc.
May occasionally need to position self to maintain computer and related tools.
Seldomly needed to move objects up to 10 pounds.
Constant communication with other individuals. Must be able to discern and exchange information as appropriate to the situation.
Constant need to distinguish, discern, and identify a variety of objects and fine details with accuracy.
The above statements are intended to describe the general nature and level of work being performed by individuals assigned to this position. They are not intended to be an exhaustive list of all duties, responsibilities and skills required by personnel so classified. This Institute promotes Equal Employment Opportunity workplace that includes reasonable accommodations to otherwise qualified, disabled applicants and employees.
Salaries for positions hired in Chile meet Chile national market rates and internal scales for AURA.
Why Join AURA:
AURA offers an excellent benefits package including paid time off and retirement plan contributions, competitive salary commensurate with experience, and a very attractive work environment. Details on benefits can be found at Benefits by Location - Aura Human Resources.
Also we offer a multicultural and collaborative work environment, committed to scientific and operational excellence. Joining our team means contributing to the success of globally significant astronomical projects, within an organization that values safety, integrity, and continuous improvement.
How to Apply
Apply by Friday, July 31st, for priority consideration. This position will remain open until it is filled.
Please submit a cover letter and a CV or resume, PDF fines preferred.
Individuals needing assistance with the employment process can request assistance here.