DevSecOps Engineer

We are looking for a DevSecOps Engineer to join our team and play a critical role in integrating security practices into our DevOps processes. This role bridges the gap between development, operations, and security, ensuring that our applications are developed and deployed with robust, automated, and scalable security measures. Key Responsibilities: Implement and maintain security automation tools throughout the CI/CD pipelines. Collaborate with development and operations teams to embed security controls and standards. Perform threat modeling, vulnerability assessments, and security audits. Monitor security across cloud environments (e.g., AWS, Azure, GCP) and respond to incidents. Build and manage infrastructure as code (IaC) with security best practices (Terraform, CloudFormation, etc.). Ensure compliance with security standards (e.g., ISO 27001, SOC 2, NIST, GDPR). Integrate SAST, DAST, container security, and dependency scanning tools. Educate teams on secure coding practices and DevSecOps principles. Required Skills and Qualifications: Bachelor's degree in Computer Science, Cybersecurity, or related field (or equivalent experience). 3+ years of experience in DevSecOps, DevOps, or related roles. Hands-on experience with CI/CD tools (Jenkins, GitLab CI, GitHub Actions, etc.). Proficiency with containerization and orchestration (Docker, Kubernetes). Familiarity with security tools like Snyk, SonarQube, Aqua, Trivy, or similar. Strong scripting skills (e.g., Python, Bash). Experience with cloud platforms and their security services (AWS IAM, Azure Security Center, etc.). Preferred Qualifications: Relevant certifications (e.g., AWS Certified Security – Specialty, Certified DevSecOps Professional, CISSP, CEH). Experience with compliance automation and policy-as-code (e.g., Open Policy Agent, HashiCorp Sentinel). Understanding of Zero Trust architecture and secure SDLC. Working knowledge on Databricks.

We are looking for a DevSecOps Engineer to join our team and play a critical role in integrating security practices into our DevOps processes. This role bridges the gap between development, operations, and security, ensuring that our applications are developed and deployed with robust, automated, and scalable security measures. Key Responsibilities: Implement and maintain security automation tools throughout the CI/CD pipelines. Collaborate with development and operations teams to embed security controls and standards. Perform threat modeling, vulnerability assessments, and security audits. Monitor security across cloud environments (e.g., AWS, Azure, GCP) and respond to incidents. Build and manage infrastructure as code (IaC) with security best practices (Terraform, CloudFormation, etc.). Ensure compliance with security standards (e.g., ISO 27001, SOC 2, NIST, GDPR). Integrate SAST, DAST, container security, and dependency scanning tools. Educate teams on secure coding practices and DevSecOps principles. Required Skills and Qualifications: Bachelor's degree in Computer Science, Cybersecurity, or related field (or equivalent experience). 3+ years of experience in DevSecOps, DevOps, or related roles. Hands-on experience with CI/CD tools (Jenkins, GitLab CI, GitHub Actions, etc.). Proficiency with containerization and orchestration (Docker, Kubernetes). Familiarity with security tools like Snyk, SonarQube, Aqua, Trivy, or similar. Strong scripting skills (e.g., Python, Bash). Experience with cloud platforms and their security services (AWS IAM, Azure Security Center, etc.). Preferred Qualifications: Relevant certifications (e.g., AWS Certified Security – Specialty, Certified DevSecOps Professional, CISSP, CEH). Experience with compliance automation and policy-as-code (e.g., Open Policy Agent, HashiCorp Sentinel). Understanding of Zero Trust architecture and secure SDLC. Working knowledge on Databricks.