Job description
Join Amaris Consulting as a full remote DevSecOps and take a leading role in shaping the security posture of our corporate systems, cloud environments, and software delivery pipelines. You will combine deep technical expertise with architectural vision to design and maintain robust, end-to-end security processes. Your focus will be on vulnerability prevention, compliance automation, and patching governance, ensuring our environments are secure, compliant, and resilient.
Your missions
* Lead the design, hardening, and lifecycle management of corporate base images (VMs, containers, serverless) to ensure security, standardization, and elimination of known vulnerabilities.
* Conduct continuous identification, analysis, prioritization, and remediation tracking of security vulnerabilities across infrastructure, applications, and third-party components.
* Design and implement security-compliant architectures for cloud environments (AWS, Azure, GCP), integrating security controls into CI/CD pipelines and infrastructure-as-code practices.
* Define and oversee the end-to-end architecture for compliance-driven patching processes, including component inventory, patch lifecycle management, automated deployment workflows, and audit readiness, ensuring alignment with regulatory standards (e.g., ISO 27001, NIST, GDPR, CSA).
* Develop and maintain scalable, automated processes for vulnerability detection, patch compliance, and configuration hardening across hybrid and cloud environments.
* Collaborate closely with DevOps, Cloud Engineering, and IT Operations teams to embed security into development and operational workflows (DevSecOps).
* Deliver clear security metrics, risk dashboards, and compliance reports for technical and executive stakeholders.
Your profile
* 3 to 5 years of relevant experience in DevSecOps, cloud security, or infrastructure security, with proven achievements in designing and implementing security architectures.
* English language proficiency required; Italian mother tongue.
* Advanced proficiency with Docker, AWS Security, Azure Kubernetes Service (AKS), and cloud security tools.
* Experience with compliance frameworks (ISO 27001, NIST, GDPR, CSA) and security automation tools.
* Strong analytical, communication, and stakeholder management skills.
What we offer
* An international community bringing together 110+ different nationalities
* An environment where trust has a central place: 70% of our key leaders started their careers at the first level of responsibilities
* A robust training system with our internal Academy and 250+ available modules
* A vibrant workplace that frequently gathers for internal events (afterworks, team buildings, etc.)
* Strong commitments to CSR, notably through participation in our WeCare Together program
Diversity and Inclusion
Amaris Consulting is proud to be an equal-opportunity workplace. We are committed to promoting diversity within the workforce and creating an inclusive working environment. For this purpose, we welcome applications from all qualified candidates regardless of gender, sexual orientation, race, ethnicity, beliefs, age, marital status, disability, or other characteristics.