DevSecOps Engineer

We are seeking a DevSecOps Engineer to design, develop, and maintain automated provisioning pipelines and infrastructure templates that support application teams across the organisation. The role involves building secure, scalable, and reusable templates for AWS resources, CI/CD, security controls, and developer productivity tools. You will work closely with engineering teams to streamline onboarding, enhance automation, and support platform-related issues.

Provision and maintain automated onboarding pipelines enabling tenants to rapidly provision resources and assign roles for:

• GitLab:Creation of project repositories
  Assignment of GitLab roles to users
• Jira:Ticketing workflow creation
• Confluence:Workspace creation

Develop and maintain base templates such as:

• EC2 bootstrap templates for application deployment, database jump hosts, etc.
• AWS Image Builder templates for bring-your-own-AMI (e.g., GitLab Runner image).
• Lambda deployment templates for application deployment and secrets automation.

Create and manage templates to provision:

• DynamoDB
• RDS for Microsoft SQL Server

Develop and maintain network infrastructure templates including:

• Security groups and rules
• API Gateway and API Gateway stages
• Application Load Balancer (ALB) and Network Load Balancer (NLB)

Build reusable security-centric templates such as:

• IAM roles and policies
• KMS keys and configurations
• AWS Secrets Manager resources

Provision and maintain infrastructure templates for:

• AWS Backup
• S3 buckets

Develop and maintain:

• Image Builder stacks for RHEL 8 and Windows Server 2019
• Build and test components
• Image Builder infra-config and recipes
• Templates enabling tenants to provision custom AMIs based on enterprise Golden AMIs

Build and maintain:

• Liquibase automation pipelines
• RDS hardening pipelines

Provide support for:

• Service requests related to platform pipelines
• Service requests related to platform templates

• Experience in DevOps, cloud automation, or platform engineering with strong understanding of AWS.
• Hands‑on experience designing and maintaining Infrastructure as Code (IaC) templates (e.g., CloudFormation, Terraform, CDK).
• Strong knowledge of CI/CD (GitLab CI, GitHub Actions, Jenkins, etc.) and automated provisioning pipelines.
• Understanding of security best practices across IAM, secrets management, KMS, and AWS network security.
• Experience with AWS services across compute, storage, network, security, and database domains.
• Strong scripting skills (Python, Bash, PowerShell, or similar).
• Ability to troubleshoot platform issues and support engineering teams effectively.
• Familiarity with image building pipelines and OS hardening processes is an advantage.

• Opportunity to work on large‑scale enterprise automation and DevSecOps initiatives.
• Role offers exposure to cloud security, automation frameworks, CI/CD, and modern DevSecOps tools.
• Collaborative environment with continuous learning and adoption of new technologies.