Job Description

This role is for one of the Weekday's clients
Min Experience: 5 years
Location: Bangalore
JobType: full-time
We are looking for a highly skilled Senior DevSecOps Engineer to embed security at every stage of the cloud infrastructure lifecycle. This role requires strong hands-on expertise in automation, AWS, and DevSecOps best practices. You will collaborate with development, operations, and security teams to ensure that cloud environments remain secure, compliant, and resilient.
Requirements
Key Responsibilities
Cloud Infrastructure Security

• Design, implement, and maintain security controls across AWS environments.
• Integrate security scanning and compliance checks into CI/CD pipelines.
• Conduct regular vulnerability assessments and patch management using Ansible and cloud-native tools.
• Build and maintain Infrastructure as Code (IaC) using Terraform for AWS, IAM, and Cloudflare.
• Deploy and manage AWS security services such as Security Hub, GuardDuty, and Inspector.

Automation & Scripting

• Develop automation workflows and tools for security operations, compliance, and incident response.
• Maintain and enhance Ansible playbooks for consistent security configurations.
• Create scripts in Python and Bash to streamline security processes.

Kubernetes & Container Security

• Apply container and Kubernetes security best practices for clusters and workloads.
• Support secure deployment and management of containerized applications.
• Implement vulnerability scanning, secrets management, and policy enforcement within Kubernetes environments.

Compliance & Best Practices

• Ensure adherence to compliance standards such as SOC 2, ISO 27001, and PCI DSS.
• Stay updated on cloud security threats, vulnerabilities, and best practices, applying proactive risk mitigation measures.

Collaboration & Documentation

• Work closely with DevOps and development teams to integrate security into the SDLC and CI/CD pipelines.
• Train teams on secure coding and DevSecOps practices.
• Maintain clear documentation of security processes, incident response procedures, and configurations.

Qualifications

• Bachelor's degree in Computer Science, Information Security, or related field.
• 6-8 years of experience in cloud engineering, DevOps, or security engineering, with strong AWS expertise.
• Proficiency with Terraform, Ansible, AWS services (EC2, IAM, Cloudflare, Kubernetes).
• Strong scripting ability in Python or Bash.
• In-depth knowledge of cloud security best practices, vulnerabilities, and threat modeling.
• Experience integrating security into CI/CD pipelines.
• Foundational knowledge of Kubernetes and container security principles.

Preferred

• AWS Certified Security - Specialty or equivalent certifications.
• Advanced Kubernetes security expertise (RBAC, network policies, Pod Security Standards).
• Familiarity with compliance frameworks like SOC 2, ISO 27001, PCI DSS.

Skills

• DevSecOps
• AWS
• Terraform
• Kubernetes
• Cloud Security
• CI/CD
• Automation
• Python

Skills Required