Job Title : Senior DevSecOps Engineer

Experience : 6+ years (with minimum 3+ years in Kubernetes/DevSecOps)

Job Summary :

We are looking for an experienced Senior DevSecOps Engineer to design, deploy, and maintain secure, large-scale, distributed Kubernetes-based platforms. The role involves driving DevSecOps maturity, enhancing automation and CI/CD pipelines, and mentoring junior engineers. The ideal candidate will have strong expertise in Kubernetes, GitOps (ArgoCD), Helm, CI/CD platforms, cloud-native security practices, and infrastructure-as-code.

Key Responsibilities :

Kubernetes & Container Orchestration :

- Architect, deploy, and troubleshoot large-scale distributed Kubernetes (K8s) clusters.

- Manage Helm charts, Operators, Namespaces, RBAC policies, and ensure scalability, resilience, and multi-cluster availability.

- Implement and maintain GitOps practices using tools like ArgoCD/Flux.

CI/CD & Automation :

- Build, optimize, and secure CI/CD pipelines using Bamboo, Jenkins, GitHub Actions, or GitLab CI.

- Automate provisioning and deployment with Terraform/Ansible/Pulumi.

- Integrate static/dynamic security testing (SAST/DAST), container image scanning, and secret management into pipelines.

Security & Compliance (DevSecOps) :

- Embed security practices into all stages of the SDLC (shift-left security).

- Implement Kubernetes security best practices (OPA/Gatekeeper, Kyverno, Pod Security Standards, Network Policies).

- Manage identity and access management, secrets (Vault, Sealed Secrets), and vulnerability scanning.

Platform Engineering & Infrastructure :

- Maintain and enhance internal R&D platform tools including CI/CD platforms, testing labs, and infrastructure observability.

- Design highly available infrastructure across on-prem and cloud (AWS/Azure/GCP).

- Implement monitoring/logging with Prometheus, Grafana, ELK/EFK, OpenTelemetry.

Mentorship & Collaboration :

- Mentor and coach junior engineers, translating complex requirements into manageable tasks.

- Collaborate with cross-functional teams (Developers, QA, Security, Ops) in Agile/Scrum environments.

Required Skills & Qualifications :

Core Expertise :

- Kubernetes (K8s), Helm, GitOps (ArgoCD/Flux), CI/CD (Jenkins, Bamboo, GitHub Actions).

- Cloud Platforms (AWS, Azure, or GCP).

- Infrastructure as Code (Terraform, Ansible, Pulumi).

- Strong Git knowledge (branching strategies, GitOps workflows).

DevSecOps Practices :

- Hands-on with security tools: Aqua, Prisma, Trivy, SonarQube, OWASP ZAP.

- Knowledge of SAST/DAST, image scanning, IaC scanning, policy-as-code.

Soft Skills :

- Strong communication skills for both technical and non-technical audiences.

- Ability to mentor, coach, and lead teams effectively.

- Problem-solving mindset with the ability to learn new technologies quickly.

Preferred Qualifications :

- Certified Kubernetes Administrator (CKA) / Certified Kubernetes Security Specialist (CKS).

- Experience with service meshes (Istio, Linkerd).

- Exposure to Zero Trust Security models.

- Hands-on with hybrid/multi-cloud Kubernetes deployments.

- Familiarity with observability frameworks and SRE practices.