DevSecOps Engineer - CI/CD Pipeline

Role : DevSecops

Key Responsibilities :

- Design, implement, and manage secure, scalable cloud infrastructure on AWS.

- Integrate security tools and practices into CI/CD pipelines using Jenkins, Git, and other DevOps tools.

- Develop and enforce automation scripts for infrastructure provisioning and configuration management.

- Manage container orchestration platforms such as Kubernetes, ensuring security best

practices are in place.

- Implement continuous monitoring and alerting solutions to detect security threats.

- Conduct vulnerability assessments, container security scans, and penetration testing across environments.

- Collaborate with DevOps, Security, and Development teams to ensure a secure SDLC.

- Maintain infrastructure-as-code (IaC) standards using tools like Terraform or CloudFormation.

- Stay current with emerging threats, vulnerabilities, and technologies in the DevSecOps space.

Required Skills & Qualifications :

- Proven hands-on experience with AWS services (EC2, S3, IAM, VPC, Lambda, CloudWatch, etc.).

- Strong knowledge of DevSecOps practices and secure CI/CD pipelines.

- Proficiency with Git, Jenkins, and automated testing/security tools (e.g., SonarQube, Snyk,

Trivy).

- Experience with Kubernetes and containerization tools (Docker, Helm, etc.).

- Solid understanding of application and infrastructure security concepts (OWASP Top 10, secrets management, etc.).

- Familiarity with scripting languages (Bash, Python, etc.).

- Experience with Infrastructure-as-Code (IaC) tools like Terraform or AWS CloudFormation.

- Knowledge of logging, monitoring, and alerting tools (ELK, Prometheus, Grafana, etc.) is a plus.