DevSecOps
persistent
Job Description
- Integrate and automate security tooling (SAST, DAST, SCA, secrets scanning) into CI/CD pipelines.
- Implement Infrastructure-as-Code and container/Kubernetes security controls.
- Build guardrails, policy-as-code, and automated compliance checks.
- Partner with development and platform teams to enable secure delivery.
- Manage vulnerability findings and drive remediation in pipelines.
- Document standards and continuously improve DevSecOps maturity.
Expertise You’ll Bring
- Between 8 to 12 years of experience in DevSecOps.
- Hands-on DevSecOps experience integrating security into CI/CD.
- Experience with IaC (Terraform), containers (Docker/Kubernetes), and their security.
- Familiarity with SAST/DAST/SCA tools and secrets management.
- Strong scripting/automation skills (Python, Bash) and Git/CI tools.
- Knowledge of cloud security (AWS, Azure, or GCP).
- Relevant certifications (CKS, cloud security) are a plus.