Tech Stack

Description

You will embed security throughout the software development lifecycle, integrating and maintaining security tools across CI/CD pipelines, automating compliance checks, and collaborating with cross-functional teams to continuously improve security posture.

Requirements

• At least 3 years experience as DevOps/DevSecOps/Security Engineer
• Minimum 3 years running production workloads on AWS, Azure, or GCP
• Experience with CI/CD tools and source control (Git, Azure DevOps, SonarQube)
• Proven experience securing CI/CD pipelines, expertise in SCA, SAST, secret scanning, container security
• Hands-on experience with Kubernetes, Docker, GitOps (ArgoCD or Flux), and scripting (PowerShell/Bash/Python)

Responsibilities

• Integrate and maintain security tools across CI/CD pipeline (SAST, SCA, secret detection, container scanning)
• Drive security automation and enforcement for Infrastructure as Code, Configuration Management, and GitOps
• Embed security guardrails and best practices across the SDLC
• Automate compliance checks (OWASP Top 10, CIS Benchmarks) into development workflows
• Integrate with observability and monitoring systems (Prometheus, Grafana, ELK)