Senior DevSecOps Engineer

Position Summary

The Senior DevSecOps Engineer is responsible for integrating security practices across the entire software development lifecycle. This role ensures that applications, infrastructure, pipelines, and deployments meet industry-best security standards while enabling fast, scalable, and reliable delivery. The Senior DevSecOps Engineer works closely with engineering, security, cloud, and product teams to design secure architectures, automate workflows, and continuously improve the organization's security posture.

Key Responsibilities

DevSecOps & Security Integration

• Embed security controls into CI/CD (SAST, DAST, SCA, dependency checks).
• Enforce cloud security best practices (AWS/Azure/GCP).
• Perform threat modeling and vulnerability assessments.
• Ensure compliance with NIST, ISO 27001, SOC 2, and CIS.
• Build secure Infrastructure-as-Code (Terraform, CloudFormation).

Automation & CI/CD

• Build and optimize CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI, Azure DevOps).
• Automate deployments and environment provisioning.
• Implement secure secret management (Vault, AWS/Azure/GCP Secrets).

Cloud & Infrastructure Security

• Design secure cloud architectures (IAM, networking, encryption, monitoring).
• Harden servers, containers, and Kubernetes clusters.
• Monitor environments for vulnerabilities and misconfigurations.
• Configure and manage Web Application Firewalls (WAF) for API and application security (AWS WAF, Cloudflare WAF, etc.).
• Implement and manage Traefik for service routing, reverse proxying, TLS termination, and secure ingress.

Incident Response & Monitoring

• Integrate SIEM/SOAR and logging for real-time alerts.
• Support incident response and remediation.
• Perform post-incident RCA and implement fixes.

Collaboration & Leadership

• Work with dev, QA, IT, and security teams on secure engineering practices.
• Mentor junior engineers and support knowledge-sharing.
• Participate in architecture reviews and advise on secure design.

Required Qualifications

• 58+ years of experience in DevSecOps, Cloud Engineering, Security Engineering, or related fields.
• Strong experience with CI/CD pipelines and automation tools (Jenkins, GitLab CI, GitHub Actions, Azure DevOps, etc.).
• Hands-on experience with cloud platforms (AWS, Azure, GCP).
• Proficient in containerization and orchestration (Docker, Kubernetes).
• Strong scripting skills (Python, Bash, PowerShell, or similar).
• Experience with IaC tools (Terraform, CloudFormation, Ansible).
• Knowledge of security tools: SAST/DAST scanners, SCA, container scanning, SIEM, vulnerability management tools.
• Understanding of secure coding practices, OWASP Top 10, and cloud security principles.
• Experience implementing or managing Tailscale for secured network access or zero-trust connectivity.

Preferred Qualifications

• Relevant certifications:
• AWS/Azure/GCP Security or DevOps Certifications
• Certified Kubernetes Security Specialist (CKS)
• CISSP, CEH, Security+
• Experience with Zero Trust architectures and mesh networking (e.g., Tailscale, WireGuard).
• Experience in high-compliance environments (finance, healthcare, government).
• Knowledge of microservices architecture and API security.
• Experience configuring or managing WAF solutions (AWS WAF, Cloudflare WAF, ModSecurity).
• Experience with Traefik, NGINX, Envoy, or API Gateways.

Soft Skills

• Strong analytical and problem-solving skills.
• Excellent communication and documentation abilities.
• Ability to collaborate in cross-functional teams.
• Strong ownership mindset and ability to work independently.

Benefits:

• Government Mandated Benefits
• Permanent Work from Home
• 13th month pay