DevSecOps / IT Admin Engineer

Glartek, a VC-backed company founded in 2017, develops EHS Connected Worker solutions for the industrial sector. Our core mission is to help our customers increase safety, ensure quality, and deliver exceptional operational performance. We achieve this with EHS Connected Worker technologies, integrating AI, AR, and IoT, providing visibility, and optimization tools, and offering reassurance throughout the work lifecycle: before, during, and after work execution. Glartek’s mobile-first, scalable platform supports leading companies in Safety (e.g., risk management and control of work), Quality (e.g., audits and inspections), and Learning and Development (e.g., skills and training management), as well as Sustainability and real-time Communication & Collaboration. Our customer base includes large asset-intensive organizations like EDP and Finerge, and global manufacturers such as Lactalis, Daimler and International Paper.

This is a fantastic opportunity to be part of the growth of the company, reporting directly to the Engineering Manager. This intense and demanding hybrid role will require you to be involved in all different projects and technologies related to Production and Development Environments, Infrastructure and IT admin. Because Glartek builds software for industrial usage, this role places strong emphasis on security, uptime, and operational discipline. You will gain hands-on experience with real enterprise-grade production systems, while learning how DevSecOps practices apply to mission-critical B2B SaaS products.

As the ideal candidate, your goal is to be hands-on, versatile, high-energy, and problem-solving driven. You will be involved in fast-paced day-to-day environment. Last but not least, you will be empowered and accountable for a wide range of initiatives, which will give you the opportunity to own your career path and shape the future of Glartek.

DevSecOps Responsibilities

• Design, build, and maintain on-prem infrastructure and cloud infrastructure (primarily AWS) using Infrastructure as Code tools.
• Own and evolve CI/CD pipelines to support fast, reliable, and secure deployments.
• Embed security best practices into the SDLC, including Secrets management, Vulnerability scanning, Dependency and container security and Secure configuration and access controls.
• Implement and manage observability tools (logging, monitoring, alerting).
• Monitor system performance, availability, and cost; proactively optimize reliability and cloud spend.
• Follow best practices about scale, performance, geo-distribution, multi-cloud, code maintenance and documentation etc.
• Support incident response, root cause analysis, and post-mortems.
• Implement and collect evidences for security and compliance frameworks relevant to enterprise and industrial customers (e.g. ISO 27001, SOC 2, GDPR).
• Maintain non-technical and technical documentation required for audits (architecture diagrams, access controls, backup procedures).
• Support the colleagues in using and extending the automation and tools.

IT Administration Responsibilities

• Manage internal IT systems and tools, including the Microsoft 365 cloud ecosystem, third-party SaaS, third-party on-prem tools and tools developed in-house.
• Administer identity and access management (IAM), including SSO, MFA, and role-based access control.
• Support secure remote access solutions (VPNs, zero-trust access tools).
• Perform periodic user access reviews and permission audits.
• Maintain asset inventories and license tracking for audit and compliance purposes.
• Own device lifecycle management for servers, laptops and mobile devices, including onboarding and offboarding.
• Setup, operate and maintain servers and remaining hardware on the internal data-center.
• Maintain and enforce IT security policies and best practices.
• Ensure backup, recovery, and business continuity plans are in place for all systems.
• Provide internal technical support to employees.

• Engineer passionate about infrastructure, security, automation and software engineering.
• 2+ years of experience in a role with DevOps / DevSecOps / SRE responsibilities.
• Strong knowledge of the public cloud providers' services (including AWS). AWS certifications, such as Cloud Practitioner or Solutions Architect – Associate, is a plus.
• Basic scripting/development knowledge in a recent object-oriented programming language.
• Hands-on experience with CI/CD tools (GitHub Actions or GitLab CI).
• Experience with Infrastructure as Code tools.
• Familiarity with containers and container orchestration.
• Understanding of logging and monitoring solutions.
• Solid understanding of cloud security principles and best practices.
• Strong Linux skills, including provisioning, troubleshooting, and hardening.
• Practical experience with IAM, networking, and access control and endpoint MDM tools.
• Awareness of IT security best practices (endpoint security, patching, backups).
• Interest in compliance, audits, and security controls for enterprise SaaS.
• Knowledge of compliance frameworks (ISO 27001 and SOC 2).
• Ability to work independently and take ownership in a startup environment.
• Strong sense of responsibility for system reliability and security.
• Willingness to learn and grow in a fast-paced startup environment.
• Fluent in English (both spoken and written).

You will be working on a ground-breaking product, where you can use your creativity and knowledge to help solve challenging technical and social problems. You will benefit from:

• Relaxed Culture & Flat Hierarchy: We foster an open and collaborative environment;
• 25 Vacation Days: including a special day off to celebrate your birthday, an extra day around Christmas and New Year’s;
• Stock Options: Own a piece of our success;
• Health, dental and vision insurance: Comprehensive coverage starting after one year;
• Meal Allowance;
• Learning & Development: 5 exclusive days per year for company-paid training and company library with a selection of technical books;
• Team Buildings: Regular events to strengthen our community including an annual hackathon (with rewards);
• Flexible holidays and working hours;
• Hybrid work (we require new hires to spend at least 3 full days per week at the Lisbon or Leiria office);
• Free coffee and refreshments in our offices;
• Your preferred IT setup (Mac or PC) and any required devices for your work;
• Home Office Setup: We'll provide what you need to work comfortably from home;
• Annual Bonus: Receive up to two additional salaries each year;
• Referral Program: Earn €250 for every successful referral;