DevSecOps Engineer (Remote, Technology)

Job summary

The role involves overseeing the integration of security, reliability, and DevOps practices within a cloud platform and CI/CD pipelines. The DevSecOps Engineer will be responsible for enhancing cyber resilience and fostering a strong security culture across the organization.

Qualifications

• Minimum of 5 years of experience in DevSecOps, security engineering, or cloud security within a cloud-native environment.
• Strong hands-on experience with cloud service providers (CSPs), Kubernetes, Terraform, and container security.
• In-depth knowledge of secure CI/CD practices, including Infrastructure as Code (IaC) security and Software Composition Analysis (SCA).

Responsibilities

• Embed security into CI/CD pipelines by implementing secure controls and automating vulnerability management processes.
• Strengthen cloud and Kubernetes environments through secure configurations and compliance with industry standards.
• Develop secure deployment patterns and improve detection and response capabilities in collaboration with the SecOps team.
• Conduct security reviews and threat modeling for new services and architecture changes.
• Champion a strong security culture by partnering with engineering teams and defining key security performance indicators.

Skills

• Proficiency in security automation and vulnerability management.
• Experience with incident response and forensic logging.
• Strong understanding of identity and access management principles.

Education

• Relevant degree or equivalent experience in a related field is preferred.

Tools

• Familiarity with CI/CD tools, cloud platforms, and security automation tools is essential.