DevSecOps Architect - SIEM Tools

Job Summary :

We are looking for a seasoned DevSecOps Architect with over 12+ years of experience to lead the design and implementation of secure, scalable, and automated DevSecOps solutions.

The ideal candidate will have deep expertise in CI/CD automation, cloud platforms (AWS, Azure, GCP), containerization, infrastructure as code (IaC), and security toolchains.

This role demands a strategic thinker capable of embedding security at every phase of the SDLC, while fostering a culture of collaboration and Zero Trust.

Key Responsibilities :

Architecture & Strategy :

- Define and drive the DevSecOps architecture roadmap aligned with business and security objectives.

- Lead the integration of security into CI/CD pipelines and cloud-native environments.

- Establish governance for secure coding, deployment, and operations practices.

Automation & CI/CD :

- Architect and implement automated CI/CD pipelines using tools like Jenkins, GitLab CI, GitHub Actions, Azure DevOps, etc.

- Embed security tooling (SAST, DAST, IAST) into build and deployment workflows.

- Champion Infrastructure as Code (IaC) using Terraform, CloudFormation, or Pulumi.

Cloud Platforms :

- Design secure architectures across AWS, Azure, and GCP.

- Implement cloud-native security controls, identity management, and compliance frameworks.

Containerization & Orchestration :

- Architect secure containerized environments using Docker and Kubernetes.

- Define and enforce policies for image scanning, runtime protection, and cluster hardening.

Security & Monitoring :

- Integrate and manage tools for static and dynamic code analysis.

- Implement SIEM solutions and continuous monitoring for threat detection and incident response.

- Conduct architecture reviews and threat modelling sessions.

Collaboration & Culture :

- Promote secure coding practices and DevSecOps principles across engineering teams.

- Advocate for Zero Trust architectures and continuous security validation.

- Mentor teams on security automation and best practices.

Proposal Response & Solutioning :

- Collaborate with sales and bid teams during RFP/RFI stages to define DevSecOps strategies.

- Prepare technical proposals, solution blueprints, and effort estimates.

- Conduct client workshops, assessments, and presentations articulating DevSecOps value.

- Lead solution design and oversee implementation for client engagements.

Required Skills & Qualifications :

- 12+ years in DevOps/DevSecOps, including 3+ years in an architect role.

- Strong scripting skills (Python, Bash, PowerShell).

- Expertise in CI/CD tools and IaC frameworks.

- Hands-on experience with AWS, Azure, and GCP.

- Deep understanding of containerization and security using Docker/Kubernetes.

- Familiarity with security tools : SonarQube, OWASP ZAP, Checkmarx, Fortify, etc.

- Experience with SIEM tools : Splunk, ELK, Azure Sentinel.

- Knowledge of SSDLC, Zero Trust Architecture, and compliance frameworks (e.g., NIST, ISO, CIS).

Preferred Certifications :

DevSecOps / Cloud Security :

- AWS Certified Security Specialty

- Microsoft Certified : Azure Security Engineer Associate

- Certified Kubernetes Security Specialist (CKS)

Architecture :

- TOGAF

- AWS / Azure Certified Solutions Architect

Security :

- CISSP

- CCSP

Additional Requirements :