We are seeking a DevSecOps Engineer who can help design, automate, and secure infrastructure and deployment pipelines. The ideal candidate will combine strong engineering fundamentals with a security-first mindset, building systems that are reliable, scalable, and secure from development through production deployment.
Key Responsibilities
Develop, maintain, and enhance CI/CD pipelines to ensure secure and repeatable software delivery.
Implement and manage Infrastructure as Code (IaC) using tools such as Terraform, Ansible, and scripting (Bash/Python).
Integrate security and compliance controls into build and deployment workflows.
Collaborate with developers, platform engineers, and security teams to improve system reliability and observability.
Automate infrastructure provisioning, configuration management, and policy enforcement across cloud and on-prem environments.
Monitor and troubleshoot deployments using telemetry and observability tools such as Prometheus, Splunk, or ELK.
Participate in threat modeling, patch management, and system hardening across infrastructure, containers, and CI/CD pipelines.
Document DevSecOps best practices and contribute to knowledge sharing within the team.
Required Skills & Experience
Strong hands-on experience with Terraform, Ansible, and Bash scripting.
Experience with cloud platforms such as AWS, Azure, or OpenStack.
Experience with container technologies such as Docker and Kubernetes.
Familiarity with CI/CD tools like GitLab CI, Concourse, or GitHub Actions.
Knowledge of security best practices, including least privilege access and identity management.
Experience troubleshooting issues across application, network, and operating system layers.
Strong Linux systems administration skills.
Excellent collaboration and documentation abilities.
Nice to Have
Experience with logging and observability tools such as Splunk, Vector, or Kafka.
Familiarity with Vault, KMS, or secret management solutions.
Knowledge of security compliance frameworks such as FedRAMP, ISO 27001, CIS, or NIST 800-53.
Understanding of FIPS-compliant cryptography or secure enclave deployments.
What We Offer
A collaborative engineering culture where security and automation are shared responsibilities.
Opportunities to innovate across hybrid and multi-cloud environments.
Support for professional development, certifications, and continuous learning.