Security-focused DevOps Engineer

Location MoscavideLisbonPortugal
Type Other
Seniority Mid-Level
Posted Mar 16, 2026
Apply Now

Richemont is hiring a DevSecOps Engineer in Moscavide, Portugal to secure and automate cloud-native CI/CD and infrastructure.

Overview

Richemont is a Swiss-based luxury goods holding company that houses a portfolio of distinguished maisons across jewellery, watches, leather goods and specialised luxury e-commerce. As an employer, Richemont combines artisanal heritage and exacting product standards with a strategic investment in digital platforms and technology to support global maisons and retail operations.

Role & Responsibilities

  • Design and implement secure CI/CD pipelines and integrate security gates throughout the software delivery lifecycle.
  • Embed security controls into infrastructure-as-code and manage immutable, auditable deployment patterns.
  • Implement and operate container orchestration platforms (Kubernetes) and secure container image pipelines.
  • Run automated vulnerability scanning, dependency analysis and static application security testing as part of build and release processes.
  • Manage secrets, keys and credentials using centralized secrets-management solutions and harden access controls.
  • Collaborate with development, platform and information security teams to operationalise threat modelling, secure coding practices and remediation workflows.
  • Automate cloud security posture management and compliance checks across public cloud environments.
  • Respond to elevated security incidents in production and participate in post-incident reviews and continuous improvement.
  • Instrument monitoring and observability for security-relevant telemetry (logs, metrics, traces) and integrate with SIEM and alerting.
  • Produce technical guidance, run training sessions for engineering teams, and participate in architecture reviews to ensure secure-by-design outcomes.

Qualifications

  • Bachelor’s degree in Computer Science, Engineering or equivalent practical experience.
  • 3+ years of hands-on DevOps or DevSecOps experience in production cloud environments.
  • Proven track record implementing security controls in CI/CD and infrastructure-as-code workflows.
  • Strong scripting or programming ability (Python, Go, or Bash) and experience with automation frameworks.
  • Demonstrable knowledge of cloud-native security principles, identity and access management, and network segmentation.
  • Experience with vulnerability management and SAST/DAST tools and interpreting their results to drive remediation.
  • Comfortable working with cross-functional stakeholders and translating security requirements into developer-friendly controls.

Skills

Kubernetes Docker Terraform Ansible GitLab CI / Jenkins AWS Azure Google Cloud Platform Vault (HashiCorp) Snyk SonarQube Prometheus Grafana Splunk Python Go Bash OAuth / OIDC / IAM

Experience

Minimum three years of professional experience in DevOps, cloud platform engineering or DevSecOps, with demonstrable ownership of designing and operating secure CI/CD and production environments.

Education

Bachelor’s degree in Computer Science, Software Engineering, Information Security or a closely related technical field, or equivalent practical experience.

Culture

Richemont blends traditional craftsmanship with a modern technology agenda, encouraging cross-maison collaboration and high standards of discretion and quality. The technical organisation emphasises autonomy, craftsmanship in engineering, and a pragmatic approach to risk and compliance to protect heritage brands and customer trust.