DevOps Security Analyst

The Security DevOps Engineer (DevSecOps) is a hands-on technical role responsible for integrating security practices into the software delivery lifecycle, from code commit to production deployment. Working within a collaborative engineering team, this role contributes to the design and operation of secure CI/CD pipelines, cloud and on-premises infrastructure hardening, and compliance automation across distributed systems environments.

The successful candidate is a self-driven engineer who brings both security expertise and strong development skills. This individual is comfortable independently owning workstreams, participating in code reviews and threat modeling exercises, and partnering with senior engineers and cross-functional teams on broader platform initiatives.

This role requires collaboration with geographically distributed teams and may occasionally require after-hours availability.

Work Modality

This position may be offered in one of the following formats, in accordance with AURA’s Teleworking Protocols:

• On-site in La Serena, Chile
• Full or Hybrid Teleworking

Essential Functions

• Develop, deploy, configure, test, and maintain DevOps services
• Build, maintain, and improve secure CI/CD pipelines by integrating automated security checks including SAST, SCA, secret scanning, and container image scanning
• Implement and enforce Infrastructure-as-Code security controls, policy-as-code rules, and automated compliance checks across cloud environments
• Contribute to the hardening of Kubernetes clusters and containerized workloads, including network policies, access controls, and image security standards
• Provide technical guidance and support to upper management throughout decision-making processes
• Participate in threat modeling sessions for new features and system changes to identify and document security risks
• Assist in security incident response efforts, including investigation, containment, and post-incident reviews
• Monitor infrastructure and application security posture using observability and alerting tools; escalate anomalies as appropriate
• Collaborate with development teams to promote secure coding practices and contribute to internal security documentation and guidelines
• Participate in code and architecture reviews with a security-focused perspective
• Mentor and support less experienced engineers.

Other Functions

• Perform other duties as assigned

Required Education, Experience, Skills & Abilities

• 4+ years of experience in software engineering, platform engineering, or a security-adjacent technical role
• Working proficiency in at least one programming or scripting language such as Python, Go, Bash, or Ruby
• Hands-on experience with Kubernetes and containerized workloads, including basic security configuration and troubleshooting
• 3+ years of experience with Git-based workflows, including branching strategies, code reviews, and pull requests
• Practical experience with at least one major cloud provider (AWS, GCP, or Azure) and its core security services
• Experience working with CI/CD platforms
• Familiarity with Infrastructure-as-Code tools such as Terraform or Ansible
• Knowledge of security scanning tools such as Trivy, Semgrep, Checkov, or similar technologies
• Strong written and verbal communication skills in English, including the ability to clearly document findings and explain security concepts to peers
• Experience mentoring junior engineers
• Clean driving record
• Ability (or willingness to learn) to drive 4WD vehicles
• Availability to work at observatory summit facilities above 2500 meters 2–3 times per week unless hired as full teleworking

Preferred Qualifications

• Certified Kubernetes Administrator (CKA) or Certified Kubernetes Security Specialist (CKS) certification
• Experience with policy-as-code frameworks such as OPA or Kyverno
• Familiarity with secrets management platforms
• Exposure to software supply-chain security concepts including SBOM, Sigstore/Cosign, or SLSA
• Experience with monitoring and observability stacks such as Prometheus, Grafana, ELK, or Loki
• Experience writing Helm charts or working with Kubernetes package management
• Familiarity with configuration management tools such as Ansible, Puppet, or Salt
• AWS Certified Security – Specialty, AWS Certified DevOps Engineer, or equivalent cloud security certifications
• Contributions to open-source security or infrastructure projects
• Hands-on experience with Infrastructure as Code
• Extensive experience with software-defined storage platforms such as Ceph.

Physical Demands

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Must be able to remain in a stationary position at least 50% of the time.
• Occasional need to move about inside the office environment to access files, office tools, attendance in a meeting room, etc.
• Constantly operates a computer and other office productivity tools that require fine motor skills, such as a calculator, copy machine, computer printer, etc.
• May occasionally need to position self to maintain computer and related tools.
• Seldomly needed to move objects up to 10 pounds.
• Constant communication with other individuals. Must be able to discern and exchange information as appropriate to the situation.
• Constant need to distinguish, discern, and identify a variety of objects and fine details with accuracy.

The above statements are intended to describe the general nature and level of work being performed by individuals assigned to this position. They are not intended to be an exhaustive list of all duties, responsibilities and skills required by personnel so classified. This Institute promotes Equal Employment Opportunity workplace that includes reasonable accommodations to otherwise qualified, disabled applicants and employees.

Salaries for positions hired in Chile meet Chile national market rates and internal scales for AURA.

Why Join AURA:

AURA offers an excellent benefits package including paid time off and retirement plan contributions, competitive salary commensurate with experience, and a very attractive work environment. Details on benefits can be found at Benefits by Location - Aura Human Resources. 

Also we offer a multicultural and collaborative work environment, committed to scientific and operational excellence. Joining our team means contributing to the success of globally significant astronomical projects, within an organization that values safety, integrity, and continuous improvement.

How to Apply

Apply by Friday, July 31st, for priority consideration. This position will remain open until it is filled.

Please submit a cover letter and a CV or resume, PDF fines preferred.

Individuals needing assistance with the employment process can request assistance here.