DevSecOps Engineer

Join Atmail and Help Shape the Future of Continuous Compliance

At Atmail, we’re looking for a DevSecOps Engineer to join our Cloud Platforms team and help bridge the gap between security policy and real-world implementation.

This is an opportunity to work at the intersection of security engineering, compliance automation, cloud infrastructure, and DevSecOps, building scalable tooling that continuously validates security controls and compliance requirements across modern environments.

If you enjoy automating security processes, building compliance-as-code frameworks, and improving cloud security visibility through engineering, we’d love to hear from you.

What You’ll Be Doing:

• Design and develop automated compliance checks across infrastructure, applications, and operational processes
• Build monitoring dashboards and reporting pipelines that provide real-time compliance visibility
• Translate security frameworks and policies into version-controlled automated test suites
• Integrate compliance and security validation into CI/CD pipelines and infrastructure-as-code workflows
• Work closely with engineering and operations teams to drive continuous compliance practices
• Support customer security audits and compliance enquiries through automated evidence collection
• Identify compliance gaps, create remediation actions, and validate fixes through re-testing
• Research and recommend emerging compliance automation frameworks and tooling

What We’re Looking For

Mandatory:

5+ years’ experience in IT, including hands-on experience in:

• Security engineering
• Compliance automation
• Monitoring or testing tooling

Strong development skills in:

• Python
• Bash scripting

Experience with:

• CI/CD pipelines
• Infrastructure-as-Code tools (Terraform, CloudFormation, etc.)
• AWS and/or Google Cloud Platform

Knowledge of compliance frameworks such as:

• ISO 27001
• SOC 2
• CIS Benchmarks

Experience with compliance automation platforms like:

• Drata
• Vanta
• CloudCheckr

Desirable:

• Policy-as-code or compliance-as-code frameworks:
• Open Policy Agent (OPA)
• Chef InSpec
• Kyverno
• OSCAL
• DevSecOps practices and automated security validation

Familiarity with:

• OWASP Top 10
• OWASP ASVS
• Threat modelling

Security certifications such as:

• CISSP
• CCSP
• CCSK
• GIAC
• AWS Security Specialty

Why Join Atmail?

• Fully flexible remote working environment
• Work on meaningful security engineering initiatives with real impact
• Be part of a culture focused on engineering excellence and continuous improvement
• Opportunity to shape modern compliance automation practices at scale
• Collaborate with experienced cloud and security professionals

• Sign In
• Create Account

Sign in

To continue your application

Sign in with Google

Sign in with Linkedin

---

or continue with email

Email address

Password

Forgot your password?

Resume or CV

Improve your chances of getting an interview

Drag & drop or browse

.pdf, .doc, .docx (Max 10MB)

Continue →

By continuing you agree to our Terms & Privacy Policy.