Devsecops Engineer

DevSecOps Engineer

We are looking for a skilled DevSecOps Engineer to embed security into our multi-cloud (AWS + Azure) environment and accelerate adoption of Cloud-Native Application Protection Platforms (CNAPP). You will be hands-on in integrating security into CI/CD pipelines, automating security controls, and collaborating with DevOps, Cloud, and Security teams to ensure security is built in, not bolted on.

This is a highly technical, engineering-focused role where you will design and implement tools, processes, and guardrails that protect applications, containers, and infrastructure across hybrid and cloud-native environments.

What we offer:

• Opportunity to drive cloud security transformation across multi-cloud enterprises.
• Work with cutting-edge CNAPP technologies and influence security strategy.
• Collaborative environment with engineering, data, and DevOps teams.
• Competitive compensation, benefits, and career development opportunities.

Key responsibilities:

• Security Automation & CI/CD
• Integrate security scanning (SAST, DAST, SCA, IaC scanning) into CI/CD pipelines.
• Automate security guardrails for IaC (Terraform, Bicep, CloudFormation).
• Build pipeline controls for container image scanning, secrets management, and vulnerability remediation.
• CNAPP & Cloud Security Engineering
• Deploy and tune CNAPP solutions (CSPM, CWPP, CIEM, KSPM, container security).
• Engineer integrations between CNAPP platforms and SIEM/SOAR/XDR.
• Assist in building secure cloud reference implementations for AWS and Azure workloads.
• Infrastructure & Application Security
• Implement least privilege IAM policies across AWS and Azure.
• Contribute to Kubernetes, container, and serverless security hardening.
• Support network security policies, secure endpoints, and service-to-service communications.
• Collaboration & Enablement
• Partner with DevOps and App Engineering teams to embed security practices into development lifecycles.
• Support Cloud Security Architects in validating new patterns and controls.
• Provide tooling, documentation, and knowledge sharing to accelerate secure adoption.

Mandatory requirements:

• 3–5+ years of experience in DevSecOps, Cloud Security Engineering, or Site Reliability Engineering.
• Hands-on experience with AWS and Azure cloud platforms.
• Strong experience with:
• CI/CD pipelines (GitHub Actions, Azure DevOps, GitLab CI, Jenkins).
• IaC & IaC Security (Terraform, Bicep, CloudFormation, tfsec, Checkov).
• Container orchestration (Docker, Kubernetes, EKS, AKS).
• Security tools (Trivy, Aqua, Prisma Cloud, Wiz, Orca, or Defender for Cloud).
• Knowledge of identity and access management, encryption, and secrets management.
• Scripting skills (Python, Bash, or PowerShell).

Optional requirements:

• Experience implementing shift-left security in agile development teams.
• Familiarity with DevOps monitoring/logging stacks (ELK, Prometheus, Grafana, CloudWatch).
• Certifications: AWS Security Specialty, Azure Security Engineer Associate, Kubernetes Security Specialist (CKS).
• Exposure to threat modeling, penetration testing, or security incident response.