• Take a highly proactive and hands-on role in driving the DevSecOps function. • Focus on defining standards, securing the delivery pipeline, strengthening cloud and Kubernetes security, and ensuring reliable, automated software delivery across the platform. • Enable teams by providing platform templates and clear, well-maintained documentation that supports consistent and secure delivery practices. • Own CI/CD pipelines with SAST/DAST/SCA, SBOM, signing. • Manage Kubernetes/EKS policies (IRSA, OPA, network policies). • Implement GitOps (Argo CD) and progressive delivery (Rollouts). • Ensure security posture: IAM, secrets, encryption, WAF, vulnerability management. • Lead observability: CloudWatch, Splunk. • Oversee DR, backup, resilience patterns, incident response. • Enable teams with platform templates and documentation. • Act as DevSecOps, guiding principles and best practices across teams without managing headcount.

• Join Arista’s CloudVision-as-a-Service (CVaaS) global SRE team • Ensure scalability, reliability, and stability of global CloudVision service fleet • Develop, operate, and work with various databases • Contribute to automation and improvement of operational processes • Drive, develop, and lead projects in data platform architecture, capacity planning, and security

• Desplegar infraestructura en la nube y OnPremises en Openshift y Docker. • Despliegue de Pipeline, revisión de servisores en ambientes productivos.

• Architect, implement, and continuously improve secure-by-design controls across multi-cloud environments (AWS, Azure, GCP) • Develop and enforce Infrastructure as Code and policy-as-code guardrails (Terraform, CloudFormation, ARM, OPA, Sentinel, Azure Policy, AWS SCPs) with automated configuration validation and remediation • Design and maintain security controls within CI/CD pipelines, integrating SAST, DAST, SCA, container and IaC scanning, and automated security gates to prevent high-risk code while optimizing pipeline performance • Lead threat modeling (STRIDE, MITRE ATT&CK), architecture reviews, and security design/code reviews to mitigate risk prior to deployment • Define and promote secure coding standards for backend APIs, mobile applications, and AI-powered services; partner with developers to remediate vulnerabilities and improve triage accuracy • Enforce and audit enterprise IAM and Zero Trust principles (RBAC, PAM, SSO, MFA, OAuth/OIDC, SAML), including access reviews, entitlement governance, and privilege drift detection • Own the vulnerability management lifecycle, including asset discovery, continuous scanning, risk-based prioritization, remediation tracking, penetration testing coordination, and risk register reporting • Develop and maintain incident response playbooks, tabletop exercises, and cloud/pipeline-specific runbooks • Integrate application and cloud telemetry into SIEM/SOAR platforms; define detection standards, support log ingestion strategy, conduct threat hunting, and assist with incident response and forensic investigations • Cooperate with the IT Security & Operations team to document risks within the risk register, track remediation progress and incident response • Partner with Cloud Engineering teams to secure infrastructure and services • Automate security operations, compliance validation, audit artifact generation, dashboards, and reporting using scripting (Python preferred) • Operationalize compliance frameworks (SOC 2, ISO 27001, NIST CSF, GDPR, CCPA), support audit readiness and third-party risk management, and ensure alignment with internal governance and change management standards