• Implement and maintain secure CI/CD pipelines. • Perform vulnerability analysis and monitoring, contributing to risk management. • Define and enforce security policies across cloud and on-premises environments. • Collaborate with development, infrastructure, and security teams, promoting a shift-left security culture. • Support observability, resilience, and incident response practices. • Contribute to the evolution of the chapter's technical practices (.NET, Java, React, Flutter, Mobile).

• Architect and scale security-first engineering across multi-cloud infrastructure • Embed security directly into development workflows • Automate detection and response at scale • Harden AWS and GCP environments against evolving threats • Partner with Engineering, IT, and Compliance to ensure systems remain resilient

• Work alongside our environment team, proposing new technologies or adjustments to the current platform • Focus on performance and stability of the entire production solution • Participate in the creation of new environments for new solutions • Analyze the current platform to suggest new approaches that bring security and reliability improvements

• Design and implement flexible pipelines that support C++, Java (Spring Boot) and Python • Configure Jenkins with declarative pipelines integrated with Bitbucket • Implement deployment strategies appropriate to each project (rolling, blue-green) • Integrate AI tools for code review and automated analysis • Produce build, deploy and quality metrics on demand or in real time • Integrate SonarQube for static analysis across all languages • Configure mandatory quality gates in the pipeline • Implement vulnerability scanning (SAST/DAST) • Automate dependency and license audits • Provision and configure Linux servers (DEV, HML [staging], PROD) on-premises • Configure NGINX as a reverse proxy with SSL/TLS and load balancing • Manage services via systemd • Implement automation with Bash, Python and Ansible • Configure Prometheus + Grafana for unified metrics • Implement ELK Stack or an open-source alternative for centralized logging • Create performance, availability and development metrics dashboards • Configure proactive alerts • Configure Nexus or Artifactory as a repository manager • Manage artifacts from builds (C++, Java JARs and Python packages) • Integrate S3-compatible storage for large artifacts • Implement versioning and traceability • Document the entire architecture and operational procedures • Create runbooks for operations and troubleshooting • Train the internal team to manage the delivery pipeline