Company Description
We are Software Mind, an awesome team of engineers who are ready to ramp up any top-notch company’s projects! Our aim? To always be one step ahead. Become part of a multicultural company in constant growth with an excellent work environment certified by Great Place To Work!
Job Description
Overview
Software Mind is seeking qualified candidates located in Latam to fill the role of DevSecOps Senior Software Engineer.
In addition to a competitive salary rate and a positive work environment committed to delivering high-quality technology solutions, we also offer:
- Flexible schedules
- An authentic work-life balance
- Payment in US Dollars
About the role:
We are seeking a DevSecOps Senior Software Engineer to integrate secure coding practices throughout the software development lifecycle. This role is ideal for an individual with deep expertise in .NET and Azure development, coupled with a passion for enhancing security posture and building scalable, secure solutions. You will work closely with engineering, security, and quality teams to proactively identify and remediate
vulnerabilities, optimize development pipelines, and champion DevSecOps best practices.
#LI-DNI
Qualifications
Some of the main responsibilities for the role include:
- Design and implement customizations to our e-commerce site to meet our evolving business needs.
- Design and develop secure, scalable applications using C#, .NET Core, ASP.NET, Angular and Azure PaaS.
- Integrate secure design principles and vulnerability remediation practices into code.
- Collaborate with security and engineering teams to triage and remediate vulnerabilities from tools such as SonarQube and Snyk.
- Upgrade third-party libraries, frameworks, and dependencies to address security issues and ensure compliance.
- Participate in threat modeling and apply frameworks such as OWASP ASVS, NIST SSDF 800-218, CISA Secure-by-Design, and SLSA.
- Collaborate with DevOps to Build and maintain CI/CD pipelines (Azure DevOps) with automated governance, scanning, and release gates.
- Coordinate with QA/SDET teams to validate remediations through automated, performance-aware testing.
- Design and maintain MS SQL and Azure SQL databases, including stored procedures and triggers.
- Conduct code reviews and ensure adherence to coding standards and secure development practices.
- Engage in Agile/SAFe ceremonies to provide estimates, technical guidance, and regular status updates.
- Conduct technical research to support production issue resolution and recommen system enhancements.
- Create clear and concise technical documentation, design diagrams, and operational procedures.
- Contribute to the transformation toward proactive, composable, and security-aware engineering practices.
- Remain current with emerging technologies and propose improvements to the software development lifecycle.
Job Skills/Requirements
- +90% English written and oral (at least B2 level) with excellent communication skills
- 7+ years of experience in software engineering with significant experience in secure
software development
- Proven expertise in .NET Core, ASP.NET, C#, SQL Server, and Azure cloud PaaS
(Azure Functions, APIs, Service Bus).
- Hands-on experience with JavaScript frameworks such as Angular, TypeScript, HTML5,
CSS.
- Strong understanding of RESTful API design, development, and security.
- Experience with vulnerability remediation, dependency management, and secure coding
best practices.
- Working knowledge of Git, Azure DevOps (CI/CD), and test automation strategies.
- Exposure to NoSQL databases like Cosmos DB or MongoDB is a plus.
- Solid experience with system performance, scalability, and reliability improvements.
- Excellent problem-solving, analytical, and communication skills.
- Hands-on experience with web analysis tools (e.g., Chrome DevTools).
- Familiarity with security scanning tools such as SonarQube and Snyk is a plus.
- Understanding of secure coding standards and threat modeling frameworks is a plus:
a. NIST SSDF (800-218)
b. OWASP ASVS and SAMM
c. CISA Secure-by-Design
d. SLSA (Supply Chain Levels for Software Artifacts)