Sr. DevSecOps Engineer

Job Summary

The Senior DevSecOps Engineer will play a pivotal role in designing, implementing, and maintaining CI/CD pipelines and security practices within both our software development and cloud infrastructure-as-code processes. This position focuses on practical, hands-on responsibilities in DevSecOps, collaborating closely with both IT operations teams and application services to enhance tooling and methodologies. The DevSecOps engineer will play a role in the architecture and design of the infrastructure for cloud-native applications and systems and will make recommendations on implementation approaches.

Duties & Responsibilities

• Design, develop, and implement solutions to integrate infrastructure and security requirements into the CI/CD pipeline and application environments in Azure.
• Identify needs for build automation and implement CI/CD solutions using tools like GitHub Actions, Terraform, and Ansible.
• Consult on DevSecOps requirements with a range of application and operations teams.
• Develop reusable solutions and patterns for CI/CD pipelines, focusing on automation and system integration.
• Troubleshoot and resolve issues in the DevSecOps domain, ensuring adherence to service SLAs.
• Align DevSecOps practices with SDLC processes and ITIL principles.
• Proactively assist the Application Support team in troubleshooting or remediating production issues, when necessary.
• Participate in design and code reviews, guiding project scoping to align with architectural goals and organizational requirements.
• Ensure adherence to governance and control requirements.
• Document DevSecOps processes and maintain the currency and integrity of DevSecOps platforms.

Experience & Education Requirements

• 4-7 years of experience in DevSecOps or cloud software delivery, with technical expertise in tools like GitHub, Ansible, Terraform, JFrog, and SonarCloud.
• Strong familiarity with cloud environments, particularly Azure Cloud, and container orchestration tools like Docker and Kubernetes.
• Experience in implementing and managing security in cloud environments, and familiarity with security standards like CIS, SOX, and PCI-DSS
• Experience using container orchestration tools preferred.
• Bachelor’s degree in Engineering, Computer Science, or related field; or relevant experience.

Knowledge, Skills & Abilities

• Strong technical skills and reasoning are required for this position.
• Strong expertise in syntax of tools utilized in DevSecOps processes, such as git, bash, PowerShell, HCL, and YAML
• Experience in programming languages such as Java, Python, and C#
• In-depth knowledge of CI/CD tools and version control systems.
• Excellent analytical, problem-solving, and interpersonal skills.
• Ability to communicate technical concepts effectively across various organizational levels.
• Proactive in identifying and resolving issues, with a focus on security and risk management.
• Certifications from recognized bodies (e.g., Cisco, CompTIA, Microsoft, DevOps Institute) are advantageous.
• Knowledge and experience of application build processes and implementing automated testing.

Other Requirements

• Perform other functions, duties and projects, as assigned.
• Regular and punctual attendance.
• Some travel may be required (less than 10%).

#LI-MB1 #LI-Remote