DevSecOps Engineer

About The Position

Requirements

• Strong hands-on experience in DevSecOps practices including CI/CD pipeline implementation and automation.
• Good understanding of secure software development lifecycle (SSDLC) and shift-left security principles.
• Experience with CI/CD tools such as GitHub Actions GitLab CI Jenkins or equivalent platforms.
• Hands-on experience with cloud platforms such as AWS Azure or GCP and containerization technologies.
• Strong knowledge of integrating security tools such as SAST SCA container scanning| and secrets detection.
• Familiarity with infrastructure as code tools such as Terraform or similar.
• Understanding of artifact management secrets management and developer tooling ecosystems.
• Exposure to internal developer platforms such as Backstage or similar tools.
• Strong analytical troubleshooting and stakeholder collaboration skills.

Responsibilities

• Implement and maintain CI/CD pipelines aligned with DevSecOps best practices.
• Integrate security controls into pipelines including SAST SCA DAST container scanning and secrets detection.
• Support secure-by-design implementation by embedding automated security guardrails in development workflows.
• Manage and maintain developer toolchains including source control build systems and artifact repositories.
• Assist in software supply chain security practices including dependency management and SBOM generation.
• Support implementation of infrastructure as code and environment automation.
• Collaborate with InfoSec platform teams and developers to enforce security and compliance requirements.
• Monitor pipeline performance troubleshoot issues| and optimize build and deployment processes.
• Contribute to documentation runbooks and continuous improvement of DevSecOps processes.

Benefits

• Flexible work from home options available.