Job SummaryWe are seeking a highly skilled DevSecOps Engineer to design, build, and operationalize secure, automated delivery pipelines and cloud infrastructure supporting large-scale cloud transformation initiatives. This role will be responsible for driving the transition from manual operational processes to fully automated, pipeline-driven delivery using modern DevSecOps practices. The ideal candidate will possess strong expertise in AWS, Terraform, YAML-based pipeline development, cloud security, Infrastructure as Code (IaC), CI/CD automation, and compliance-driven engineering practices.
Key Responsibilities- Design, develop, and maintain secure CI/CD pipelines using tools such as AWS CodePipeline, CodeBuild, CodeDeploy, GitHub Actions, GitLab CI, Jenkins, or similar technologies.
- Implement Git-based development workflows, branching strategies, signed commits, and automated quality gates.
- Integrate security controls into CI/CD pipelines, including:
- Static Application Security Testing (SAST)
- Dynamic Application Security Testing (DAST)
- Secret Scanning
- Dependency Scanning
- Infrastructure as Code (IaC) Scanning
- Build and support deployment pipelines for containerized applications running on AWS ECS Fargate, Kubernetes, or related platforms.
- Develop reusable pipeline templates that support cloud-native applications, open-source solutions, and commercial off-the-shelf (COTS) software deployments.
- Implement automated testing frameworks and quality controls using tools such as JUnit, pytest, SonarQube, and vendor-specific testing platforms.
- Design and implement blue-green and canary deployment strategies with automated rollback capabilities.
- Automate application packaging, configuration management, and deployment workflows.
- Leverage AI-assisted development tools for code analysis, test generation, pipeline optimization, and delivery acceleration.
- Implement enterprise secrets management solutions using AWS Secrets Manager, CyberArk, HashiCorp Vault, or similar platforms.
- Enforce infrastructure security through policy-driven controls, IaC scanning, and automated compliance validation.
- Implement container image security scanning and vulnerability management processes.
- Integrate identity and access management solutions such as Okta, CyberArk, Microsoft Entra ID (Azure AD), or similar platforms into deployment workflows.
- Develop automated compliance and governance controls aligned with organizational security requirements.
- Design, implement, and maintain Infrastructure as Code solutions using Terraform, CloudFormation, and Ansible.
- Establish Git-based Infrastructure as Code workflows and automated deployment pipelines.
- Convert legacy infrastructure environments into modern Infrastructure as Code implementations.
- Build reusable infrastructure modules, templates, and self-service provisioning solutions.
- Implement infrastructure drift detection, configuration validation, and compliance monitoring.
- Automate cloud account provisioning, project onboarding, and infrastructure lifecycle management.
- Develop monitoring, alerting, observability, and operational automation solutions using:
- Amazon CloudWatch
- Prometheus
- Grafana
- Elastic Stack
- Datadog
- PagerDuty
- New Relic
- Apply AI and machine learning capabilities to predictive alerting, log correlation, anomaly detection, and incident response automation.
- Collaborate with infrastructure, security, application development, and operations teams to support secure and reliable cloud operations.
Required Qualifications- Strong experience designing and implementing CI/CD pipelines across multiple toolchains and platforms.
- Extensive experience with YAML-based pipeline development and configuration management.
- Hands-on experience with AWS services, cloud-native architectures, and containerized application deployments.
- Strong proficiency with Terraform, AWS CloudFormation, and Ansible.
- Experience integrating SAST, DAST, dependency scanning, container security, and IaC security controls into CI/CD workflows.
- Strong understanding of secrets management, identity integration, authentication, authorization, and compliance-driven DevSecOps practices.
- Experience automating infrastructure provisioning, configuration management, and deployment processes.
- Strong knowledge of cloud security principles, governance frameworks, and operational best practices.
- Experience with Git-based workflows, version control systems, and infrastructure automation.
- Experience working with containerization technologies and orchestration platforms.
- Strong analytical, troubleshooting, and problem-solving skills.
- Excellent communication and collaboration abilities.
Preferred Qualifications- Experience with AWS services including:
- CloudFront
- S3
- Cloud Map
- DataSync
- CloudTrail
- App Mesh
- SQS
- GuardDuty
- AWS Inspector
- Route 53
- IAM
- VPC Endpoints
- Security Groups
- Network ACLs
- AWS WAF
- Experience migrating legacy applications and middleware to AWS ECS, EKS, or containerized environments.
- Experience supporting COTS application deployment automation.
- Knowledge of Open Policy Agent (OPA) and policy-as-code frameworks.
- Experience implementing multi-cloud Infrastructure as Code solutions across AWS, Azure, and GCP.
- Experience with AI-assisted DevOps, observability platforms, automated remediation, and operational intelligence solutions.
- Experience implementing FinOps, cloud cost optimization, and governance controls.
- Familiarity with Site Reliability Engineering (SRE) principles and practices.
Certifications- AWS Certified Solutions Architect - Preferred
- AWS Certified DevOps Engineer - Preferred
- AWS Certified Security Specialty - Preferred
- AWS Advanced Networking Certification - Preferred
- HashiCorp Terraform Associate - Preferred
- Certified Kubernetes Administrator (CKA) - Preferred
- Certified Kubernetes Application Developer (CKAD) - Preferred
- Site Reliability Engineering (SRE) Certification - Preferred
