DevSecOps Lead - Terraform

Description :

Job Title : DevSecOps Lead

Experience : 8+ Years

Location : Hyderabad / Bangalore / Pune / Chennai

Key Responsibilities :

DevSecOps Strategy & Leadership :

- Define best practices for secure software delivery, infrastructure automation, and cloud-native architecture.

- Mentor and guide DevOps and security engineers in implementing DevSecOps principles and practices.

- Collaborate with engineering leadership to drive continuous improvement and DevSecOps adoption.

Infrastructure & Automation :

- Design, provision, and manage cloud infrastructure environments using Infrastructure-as-Code (IaC) tools such as Terraform, AWS CloudFormation, and Packer.

- Build reusable and secure infrastructure templates to enable consistent and automated deployments.

- Automate infrastructure provisioning, configuration management, and environment setup.

- Ensure infrastructure is scalable, resilient, and compliant with security standards.

CI/CD Pipeline Design :

- Architect, build, and maintain secure and automated CI/CD pipelines to support application development and deployment.

- Integrate security controls directly into pipelines, enabling shift-left security practices.

- Enable automated build, test, security scanning, and deployment workflows.

- Support tool migration initiatives and intelligent test automation frameworks.

Security Integration (DevSecOps) :

- Embed security testing and compliance checks into CI/CD pipelines.

- Implement policy-as-code and compliance-as-code frameworks for automated governance.

- Integrate vulnerability scanning, SAST, DAST, and container security tools into the

development lifecycle.

- Manage and implement secrets management solutions such as HashiCorp Vault, Azure Key

Vault, or AWS Secrets Manager.

Identity & Access Management :

- Configure and manage access control using Microsoft Entra ID (Azure Active Directory).

- Ensure secure authentication and authorization mechanisms for infrastructure and applications.

Compliance & Risk Management :

- Work with security teams to ensure regulatory compliance and security best practices across environments.

- Implement automated compliance validation and monitoring within DevOps workflows.

- Ensure infrastructure and pipelines adhere to enterprise security standards and governance

policies.

Test Automation & Data Security :

- Support intelligent test automation frameworks integrated into CI/CD pipelines.

- Implement synthetic data workflows for secure testing in non-production environments.

- Ensure data privacy and security when handling test data across development environments.

Monitoring & Reliability :

- Automate alerts and incident response mechanisms to improve system uptime and resilience.

- Work with Site Reliability Engineering (SRE) teams to enhance system stability.

Required Skills :

DevOps & Automation :

- Strong experience in DevOps, DevSecOps, and CI/CD pipeline implementation

- Hands-on expertise with CI/CD tools (Jenkins, Azure DevOps, GitHub Actions, GitLab CI)

Infrastructure-as-Code (IaC) :

- Terraform

- AWS CloudFormation

- Packer

- Configuration management tools

Cloud Platforms :

- Experience with Azure, AWS, or multi-cloud environments

- Cloud security and infrastructure management

Security Integration :

- Container security

- Secrets management

- Compliance automation