We are seeking a Senior DevSecOps Engineer to lead the design, implementation, and automation of secure cloud infrastructure, CI/CD pipelines, and system reliability practices. This role is ideal for someone with strong technical depth in DevOps and a passion for embedding security into every stage of the development lifecycle.

Responsibilities:

1. Design, implement, and optimize secure CI/CD pipelines with integrated security checks (SAST, DAST, dependency scanning).
2. Lead infrastructure monitoring, incident response, and security hardening across systems.
3. Architect, secure, and manage containerization/orchestration platforms (Docker, Kubernetes).
4. Develop automation and Infrastructure-as-Code (Terraform, CloudFormation, Ansible) with security controls baked in.
5. Implement and manage secrets management, IAM policies, and compliance frameworks (PCI-DSS, ISO, SOC2, GDPR).
6. Collaborate with engineering, security, and compliance teams to ensure cloud systems meet reliability and regulatory standards.
7. Mentor DevOps/DevSecOps engineers and foster a “security by design” culture.

Requirements:

1. 2-4 years of relevant DevOps/SRE/DevSecOps experience.
2. Strong expertise in Linux, Git, and major cloud platforms (AWS, GCP, or Azure).
3. Deep knowledge of container orchestration (Kubernetes, Docker) with security best practices.
4. Hands-on experience in Infrastructure-as-Code (Terraform, CloudFormation, Ansible).
5. Proficiency in scripting/automation (Python, Bash, Go, or similar).
6. Familiarity with vulnerability management, SIEM, IDS/IPS, WAF, and endpoint protection tools.
7. Strong understanding of compliance standards (PCI-DSS, ISO 27001, SOC2, GDPR, DORA, NIST).
8. Excellent problem-solving, leadership, and cross-team collaboration skills.