The Hotels Network

Senior DevSecOps Engineer

We're looking for a talented and motivated DevSecOps Engineer to join our groeing team at The Hotels Network. The Hotels Network is an award-winning technology company providing innovative software (B2B SaaS) for the hospitality industry. Since day one, we've worked hard to bring together an awesome team with deep expertise in hospitality, product design and consumer marketing. United by the mission to help hotel brands increase direct bookings, we build pioneering technology that enables any hotel to optimize their guests’ booking experience and regain their fair share of online revenue. We believe in what we do. As do thousands of hotels around the globe.

Based at our headquarters in Barcelona as well as in other strategic locations around the globe, The Hotels Network team is made up of 150 people from 25 different nationalities. This is an extraordinary opportunity to join a very ambitious company at a point where your work will have an immediate impact on its growth and results. And have fun doing it, too.

🔧 Our Stack & Security Context

We run our infrastructure on Kubernetes over AWS, maintaining a strong focus on scalability, reliability, and security. We are proudly SOC 2 Type I certified.

đź‘Ą The Role

What you’ll do:

  • Lead and evolve our security practices in cloud infrastructure and CI/CD pipelines.
  • Collaborate with engineering teams to embed security throughout the Software Development Life Cycle (SDLC).
  • Develop and maintain Helm charts with a strong emphasis on resilience and security controls.
  • Act as the primary liaison with our third-party security provider and manage external audits.
  • Continuously evaluate and improve our cloud security architecture and monitoring practices.
  • Contribute to and enforce incident response and vulnerability management protocols
  • Maintain clear documentation of security policies and collaborate in building internal security playbooks
  • Bring hands-on experience in Kubernetes hardening and AWS cloud infrastructure.
  • Apply strong knowledge of DevOps toolchains (e.g., Terraform, Helm, CircleCI).
  • Ability to communicate effectively with an international team in English, both written and spoken.

đź”­ What to Expect

In your first month:

  • Complete your onboarding and understand our security and infrastructure landscape.
  • Get to know the entire team and integrate into our way of working.
  • Participate in several production deployments.
  • Join ongoing architectural and security discussions, actively contributing your insights.
  • Familiarize yourself with your squad’s product areas and internal support processes.

In your first three months:

  • Gain a deep understanding of our processes, tools, and architecture
  • Identify and lead improvements in security practices or tooling.
  • Own and deliver a successful project—whether a feature launch, a technical improvement, or a DevSecOps enhancement—with technical independence.

In your first six months:

  • Become a key reference point in your team, especially in your product and infrastructure domains.
  • Drive substantial improvements to our security architecture and development experience through your initiatives and collaboration.

đź’ˇ Nice to Have:

  • Familiarity with compliance frameworks (SOC 2, ISO 27001).
  • Knowledge of threat modeling, risk assessments, and secure SDLC practices
  • Experience with security scanning tools (e.g., Qodana).
  • AWS Certified Security – Specialty or Solutions Architect – Associate/Professional.


%FOOTER_POWERED_BY%breezy