HamburgerMenu
hirist

Artificial Intelligence

Machine Learning

NLP

Generative AI

Predictive Modeling

Query Segmentation

AI Interface

LLM

Deep Learning

MLOps

Security Architect - AI

Cloud Architect - ML/AI

Data Scientist

Data Modeling

Data Analytics & BI

Data Engineering

Backend Development

Frontend Development

Full Stack

Mobile Applications

Emerging Technologies

DevOps / SRE

CyberSecurity

Quality Assurance

Platform Engineering / SAP/Oracle

Product Management

Business Analysis and Project Management

UI & Design

Semiconductor/VLSI/EDA

Others

Adamsbridge - DevSecOps Engineer - CI/CD Pipeline

Adamsbridge Services Private Limited
Multiple Locations
9 - 14 Years
DevSecOpsAWSAzureGoogle Cloud PlatformCloud ServicesJenkinsCI/CD PipelineSASTDAST

Posted on: 16/07/2025

Job Description

Job Description :


As a DevSecOps Engineer focusing on web applications, you will embed security practices and controls across the development lifecycle. You will partner closely with software engineers, DevOps teams, and security stakeholders to build secure, scalable web applications and APIs. Your role will ensure security is integrated into code, pipelines, infrastructure, and deployment workflows.

Key Responsibilities :


- Implement and maintain security tools in the CI/CD pipeline, including static analysis (SAST), dynamic testing (DAST), software composition analysis (SCA), and secrets scanning.

- Collaborate with development teams to design and implement secure coding practices, frameworks, and libraries.

- Develop and maintain Infrastructure as Code (IaC) security policies for cloud environments (AWS, Azure, GCP).

- Support secure configuration and deployment of web applications, APIs, containers, and microservices.

- Conduct threat modeling and risk assessments for new applications and features.

- Automate compliance validation against internal and external security standards.

- Monitor security metrics and generate reports on vulnerabilities, risks, and remediation progress.

- Provide technical guidance and training to developers and DevOps teams on secure design and implementation.

- Work with the Blue Team to improve detection and response for web application and API threats.

- Participate in incident response and root cause analysis for security events affecting web applications.

Required Skills :


Strong understanding of :

- Web application architectures and modern development stacks (e.g., Node.js, Python, Java, .NET).

- Secure coding practices and common vulnerabilities (OWASP Top Ten).

- CI/CD pipelines and related tooling (e.g., Jenkins, GitLab, GitHub Actions, Azure DevOps).

Hands-on experience with :

- Static and dynamic security testing tools (e.g., SonarQube, OWASP ZAP, Burp Suite, Snyk).

- Software Composition Analysis (SCA) tools for dependency management.

- Container security and orchestration (Docker, Kubernetes).

Familiarity with :

- Infrastructure as Code (Terraform, CloudFormation, Ansible).

- Secrets management solutions (Vault, AWS Secrets Manager).

- Proficiency in programming languages (Python, Bash, PowerShell).

Preferred Skills :

- Experience implementing security automation workflows in large-scale environments.

- Familiarity with Zero Trust and least privilege design principles.

- Knowledge of API security standards and best practices (OAuth2, OpenID Connect).

- Exposure to compliance frameworks (ISO 27001, SOC 2, PCI-DSS).


info-icon

Did you find something suspicious?

Posted By

Adamsbridge

HR at Adamsbridge Services Private Limited

Last Active: 18 Sep 2025

Job Views:  
64
Applications:  10
Recruiter Actions:  2

Posted in

DevOps / SRE

Functional Area

DevOps / Cloud

Job Code

1513894

Jobs by location

Interview Questions for you

View All
Blog for regisnation

How to Write Leave Application for Urgent Work: Format & Samples (2025)

Blog for regisnation

Top 90+ Machine Learning Interview Questions and Answers

Blog for regisnation

Top 40+ Deep Learning Interview Questions and Answers