Job Description

We are seeking a highly skilled

DevSecOps Engineer

to join our team and enhance the security posture of our development and deployment processes. You will be responsible for embedding security throughout the DevOps pipeline and across the infrastructure, ensuring best practices are implemented in CI/CD, infrastructure automation, container security, and monitoring. The ideal candidate is experienced with AWS, Kubernetes, Jenkins, and a suite of security and monitoring tools.

Key Responsibilities:

Design, implement, and manage CI/CD pipelines for automated builds, testing, and deployments. Use Infrastructure as Code (IaC) tools (e.g., Terraform, CloudFormation) to provision and manage infrastructure. Automate manual operational tasks through scripting and configuration management tools (e.g., Ansible, Bash, Python). Deploy, monitor, and maintain applications in cloud environments such as AWS, Set up and manage monitoring, alerting, and logging systems using tools like Prometheus, Grafana, ELK, or Datadog. Collaborate with development and QA teams to optimize the software development lifecycle. Implement DevSecOps practices to integrate security into CI/CD and cloud workflows. Perform routine system maintenance, upgrades, and troubleshooting.

Required Skills and Qualifications:

3-6+ years in a DevSecOps, DevOps, or Security Engineer role. Strong hands-on experience with

AWS

services and security configurations. Proficient in

Jenkins

and

GitLab CI

for pipeline automation. Deep understanding of

Docker

and container orchestration with

Kubernetes

. Experience with

SonarQube

,

CodeQL

, and

OWASP

security practices. Familiarity with

monitoring and observability tools

like

Datadog

,

ELK (Elasticsearch, Logstash, Kibana)

, and

New Relic

. Proficient in

Git

workflows and secure development practices. Strong scripting experience (e.g., Bash, Python). * Knowledge of secure coding practices, threat modeling, and compliance frameworks (e.g., CIS, NIST).