AGM, DevSecOps

• Design, implement, and optimize secure CI/CD pipelines across hybrid environments (cloud/on-prem). 
• Operationalize DevSecOps frameworks with embedded controls for static/dynamic code analysis, secrets management, and runtime policy enforcement. 
• Implement Infrastructure as Code (IaC) practices using tools like Terraform, Ansible, CloudFormation. 
• Integrate cybersecurity tools and telemetry (e.g., SAST, DAST, SCA, EDR, vulnerability scanners) across the development lifecycle. 
• Govern DevOps platform tools (e.g., Jenkins, GitHub Actions, Azure DevOps, ArgoCD) with secure configurations and traceability. 
• Partner with cybersecurity teams to ensure regulatory alignment (IEC 62443, NIST CSF) via automated controls and compliance-as-code. 
• Enable release velocity and rollback confidence through blue-green deployments, canary testing, and automation QA. 
• Drive performance monitoring and incident response readiness through log aggregation, alerting, and dashboarding (e.g., Prometheus, Grafana, ELK). 
• Coach DevOps engineers, implement sprint KPIs, and lead tool evaluations for emerging automation and security tooling.  

Preferred Qualifications 

1. Education: 
   • Bachelor’s degree in Computer Science, Engineering, or a related technical discipline. 
   • Master’s degree preferred (in Cybersecurity, Systems Engineering, or DevOps Automation). 
2. Certifications (preferred): 
   • DevOps: Certified Jenkins Engineer, GitHub Actions, Azure DevOps Expert, or similar. 
   • IaC / Automation: HashiCorp Terraform Associate, Red Hat Ansible Automation. 
   • Security Tooling: Practitioner-level training in SAST/DAST/SCA/EDR (e.g., Aqua Security, Snyk, SonarQube). 
   • Cloud Security: AWS Security Specialty, Azure Security Engineer, or CCSP. 
   • Compliance: Awareness training in IEC 62443 or NIST CSF is desirable.