• Deploy, integrate, and maintain Avoca voice agent products in complex customer infrastructures. • Diagnose production issues and perform deep root-cause analysis across distributed systems, APIs, and LLM-powered workflows. • Analyze and resolve complex technical scenarios involving Large Language Models (LLMs), system architecture, and scalability challenges. • Collaborate with cross-functional teams and customers to understand requirements and deliver tailored technical solutions. • Monitor and optimize product performance in production environments leveraging LLMs and distributed systems. • Communicate complex technical issues clearly to both technical and non-technical stakeholders. • Document solutions, best practices, and troubleshooting processes to improve team knowledge and operational efficiency. • Take initiative to improve deployment tooling, reliability, and system observability.

• Contribute to automating operational tasks across many GitLab environments, from initial provisioning and configuration updates to upgrades and routine maintenance, helping reduce manual work and improve reliability at scale under the guidance of senior team members. • Help build and refine the observability stack for multi-tenant GitLab environments so we monitor the right signals across Kubernetes, cloud services, and GitLab applications, supporting early issue detection and basic capacity tracking. • Assist in responding to platform alerts and incidents, collaborating with Environment Automation SREs and engineering teams to troubleshoot production issues across multiple tenants and document findings. • Support planning and implementation of infrastructure changes, capacity expansions, and new service rollouts for Dedicated and other managed GitLab environments, contributing to efforts that improve resource efficiency and environment isolation. • Develop and maintain scripts, automation tools, and infrastructure-as-code workflows that manage parts of the GitLab environment lifecycle, enabling more repeatable, self-service operations over time. • Apply and help implement best practices for running GitLab on Kubernetes and cloud platforms, focusing on day-to-day reliability, performance, and security while learning how to keep environments consistent. • Participate in the on-call rotation for production GitLab environments with appropriate support, helping triage and mitigate incidents across clusters and cloud providers and contributing to post-incident reviews. • Document operational tasks, runbooks, and lessons learned so they become clear, repeatable processes and can be candidates for future automation, improving shared knowledge and reducing manual toil across the team.

Role Description The DevSecOps Engineer plays a critical role in enabling secure, scalable software delivery across Allia Health Group’s cloud infrastructure. This role operates at the intersection of DevOps and security, embedding security controls directly into CI/CD pipelines and engineering workflows. This is a mission-critical hire supporting the organization’s SOC 2 compliance timeline. The ideal candidate brings a balanced skill set across infrastructure, automation, and security tooling, and is comfortable working in a fast-paced, evolving environment. - Operate as a bridge between DevOps and Security to integrate security into the software development lifecycle - Implement CI/CD security controls including SAST, DAST, SCA, and container scanning - Implement controls aligned with SOC 2 change management and vulnerability management requirements - Manage secrets lifecycle using cloud-native tools - Build and maintain infrastructure security controls using Terraform - Generate audit-ready change management evidence - Integrate vulnerability scanning into compliance workflows - Enforce secure development practices and pipeline protections - Collaborate with GRC teams to align technical controls with compliance requirements Qualifications - Minimum 3+ years of experience in DevOps, DevSecOps, or platform engineering - Experience with cloud platforms such as Google Cloud Platform (GCP) - Strong experience with CI/CD tools such as GitHub Actions - Hands-on experience with Terraform and infrastructure as code - Knowledge of application security and container security tools - Familiarity with SOC 2 or similar compliance frameworks Requirements - Experience with compliance platforms such as Drata or similar tools - Knowledge of HIPAA technical safeguards - Experience with policy-as-code tools - Relevant cloud or security certifications Benefits - Full benefits package including medical, vision, dental, 401(k) with company match, PTO, Flex days, holidays, and more - Working in Madeira in a shared office space, remote in Portugal, or remote in a Portuguese time zone-friendly location - Opportunity to build security-first infrastructure and systems - High-impact role within a growing technology organization - Benefits package designed to meet local market standards and legal requirements

• Co-responsibility for system availability: You actively contribute to the availability, reliability, and efficiency of our complex system architecture, which consists of around 70 servers hosted at Hetzner. • Maintenance and automation: You support the maintenance and automation of our existing infrastructure based on technologies such as Ubuntu, Percona MySQL Cluster, MinIO, Elasticsearch, Redis, NGINX, HAProxy, TiDB, ClickHouse and Kubernetes. • Monitoring and analysis: You improve our monitoring strategies and perform comprehensive incident and fault analyses. • High availability: You are prepared, in exceptional cases, to be available outside normal hours, including at night, to ensure our systems run smoothly. • Software development: Several years of experience in one or more programming languages (e.g., Rust, Java, Go, TypeScript) are required.