Cloud Security Engineer

Job description

About Us

NetMidas
is a technology staffing company based in Cali, Colombia, since 2007.

We have worked with many clients, including large multinationals (including Apple), startups, banks, and agencies.

We specialize in connecting top engineering talent with organizations looking to scale and innovate.

We are seeking a DevSecOps Engineer to collaborate closely with an exciting international client.

About our Client

Our client is a global non-profit that develops mission-critical software for wildlife care and conservation.

Their solutions support zoos, aquariums, and conservation organizations worldwide, helping safeguard biodiversity through reliable, secure, and scalable technology.

Our client operates as both a SaaS company and a conservation-driven mission, offering engineers a chance to contribute to meaningful projects while solving complex technical challenges.

Position Summary

The
DevSecOps Engineer

will ensure the reliability, availability, performance, and security of Species360's systems and applications.

This role is hands-on and highly collaborative, working closely with the Site Reliability Engineering (SRE), Security, Data, and Product Engineering teams.

You will help mature a
hybrid infrastructure

(on-prem + cloud), enhance observability, improve disaster recovery and high availability, and bring proactive ideas for improving security and automation.

This is a unique opportunity to join a small, agile team where your input directly shapes infrastructure strategy and organizational impact.

Why Join?

• Opportunity to directly impact global conservation efforts through critical technology.
  
  
• Work across hybrid infrastructure with room to shape practices and decisions.
  
  
• Access to best-in-class tools (non-profit vendor discounts for leading platforms).
  
  
• Professional development support: certifications, LinkedIn Learning, hack-time, and mentorship.
  
  
• Collaborative, mission-driven culture with space to grow into different roles (e.g., product engineering).
  
  

Required Skills

Must Have:

• Strong ability to communicate in English (professional proficiency).
  
  
• Previous experience working with international clients.
  
  
• 5+ years in IT/Engineering, with at least 1 year in DevSecOps or Site Reliability Engineering (SRE).
  
  
• Experience with hybrid infrastructure (data centers/on-prem plus cloud: GCP, AWS, or Azure).
  
  
• Proficiency in containerization (Docker, Kubernetes).
  
  
• Strong scripting/automation skills (Python, Bash, or PowerShell).
  
  
• Hands-on experience with CI/CD pipelines and Infrastructure as Code (Terraform, Ansible).
  
  
• Knowledge of networking, storage, and databases across cloud/on-prem environments.
  
  
• Familiarity with monitoring/observability tools (Prometheus, Grafana, New Relic, ELK, etc.).
  
  
• Understanding of security principles and compliance frameworks (SOC 2, ISO 27001, NIST).
  
  

Soft Skills:

• Highly self-driven and accountable; thrives in small, distributed teams.
  
  
• Strong problem-solving skills and attention to detail.
  
  
• Ability to explain complex technical concepts to non-technical audiences.
  
  
• Collaborative mindset, but also capable of working independently without hand-holding.
  
  
• Proactive in bringing forward ideas and solutions.
  
  

Nice to have:

• Familiarity with service reliability metrics (SLOs, SLIs, error budgets).
  
  
• Experience with incident response, root cause analysis, and escalation protocols.
  
  
• Prior exposure to security observability, vulnerability management, or audits.
  
  

Team & Culture

• Reports to: Manager, Site Reliability Engineering (SRE).
  
  
• Works closely with: Product Engineering, Data, and Security teams.
  
  
• Small, collaborative, and distributed team (U.S. Central Time overlap required).
  
  
• Daily stand-ups, Slack-first communication, pairing and mentoring opportunities.
  
  
• Culture values: self-driven, collaborative, communicative, proactive, no babysitting needed.
  
  
• DEI: Species360 fosters diversity and inclusion, strongly encouraging applications from underrepresented groups.
  
  

Workflow & Tools

• Methodologies: Kanban (SRE team), Agile iterations (Product team).
  
  
• Tools: JIRA, Slack, PagerDuty, observability and security monitoring tools.
  
  
• On-call: Shared rotation for SRE and Product Engineering teams, with defined SLAs and escalation protocols.
  
  

Key Responsibilities

• Design, implement, and maintain scalable, resilient, and secure infrastructure across hybrid environments (on-prem and GCP, with exposure to AWS/Azure).
  
  
• Develop, maintain, and optimize CI/CD pipelines and Infrastructure as Code (Terraform, Ansible).
  
  
• Strengthen disaster recovery systems, high-availability setups, and replication strategies.
  
  
• Improve monitoring and observability, both system-wide and security-focused, using tools such as Prometheus, Grafana, New Relic, ELK, or Microsoft Defender.
  
  
• Build automation for infrastructure, security compliance, and routine operations (Python, Bash, or PowerShell).
  
  
• Participate in on-call rotations, responding to incidents and performing root cause analysis.
  
  
• Collaborate with cross-functional teams (engineering, data, security) to forecast resources, optimize performance, and enforce security best practices.
  
  
• Contribute to documentation, runbooks, and knowledge sharing to strengthen team practices.
  
  
• Proactively propose improvements and solutions, bringing forward ideas for better tools, processes, and automation.
  
  

What Success Looks Like (30/60/90 days)

• 30 Days: Understand systems, infrastructure, and security practices.
  
  Pair closely with senior DevSecOps engineer to onboard.
  
  
• 60 Days: Contribute independently to disaster recovery, monitoring, and automation tasks.
  
  
• 90 Days: Take ownership of ongoing projects, proactively propose improvements, and demonstrate measurable impact on system reliability and security.
  
  

Contract, Terms

• Type:

Contractor role (with possibility of contract-to-hire).

Initially, 6 months.

Freelance with our company in the US.
- Commitment:

Full-time position (8 hours/day - 40 hrs/week, with occasional overtime).
- Location:

Remote

and U.S. Central Time overlap required; team meetings usually around 9–10 am CT.
- Start date:

Early October 2025.

Required Skill Profession

Other General