Lead DevSecOps Engineer

Platform & DevOps Leadership

·       Architect and lead an integrated DevOps stack that unites embedded firmware, OTA updates, edge-cloud pipelines, and distributed cloud infra.

·       Design and operate multi-cloud infrastructure (AWS/GCP/Azure) optimized for agility, scale, and cost.

·       Build developer platforms that shorten release cycles, increase test coverage, and automate provisioning from firmware to backend.

·       Lead AI-driven automation from anomaly prediction in build/test pipelines to intelligent resource allocation and reliability forecasting.

Security Ownership

·       Lead end-to-end security strategy, device identity, PKI, firmware signing, SBOMs, secrets management, IAM, and real-time threat detection.

·       Embed security into DevOps pipelines (“shift-left” security): automated scanning, compliance-as-code, and zero-trust enforcement.

·       Design AI-assisted threat detection and response pipelines leveraging telemetry data from devices and cloud workloads.

·       Foster a culture of secure-by-default in every commit, deploy, and design review.

Cross-Functional Execution

·       Partner with Firmware, Cloud, Data, and Product teams to release rapidly while keeping stability uncompromised.

·       Translate complex reliability or security issues into business-impact language.

·       Be the bridge between engineering and operations: someone who’s equally comfortable debugging a CI pipeline or influencing product strategy.

·       Lead blameless postmortems and convert learnings into automation or detection logic.

Leadership & Culture

·       Build and lead a small, elite team of DevOps, SRE, and Security Engineers.

·       Model “own it like a boss” behaviour, full accountability from root-cause to fix to prevention.

·       Drive the mindset of next best: constant iteration, eliminating toil, and finding smarter (often AI-assisted) ways to operate.

·       Promote “thinking systems-first”, build once, automate forever.

·       15+ years of experience in DevOps/SRE/Security, including hands-on time building and scaling systems (not just managing teams).

·       Proven experience with embedded or IoT devices + cloud integration, OTA, telemetry, provisioning, and monitoring.

·       Deep knowledge of Kubernetes, Terraform/IaC, CI/CD pipelines, and observability stacks (Prometheus, Grafana, Loki, CloudWatch, etc.).

·       Strong foundation in cloud security (IAM, KMS, policy-as-code) and device security (secure boot, cert rotation, firmware signing).

·       Hands-on programming in Python, Go, or TypeScript; experience automating with APIs, SDKs, or LLM-based ops tools.

·       Strategic understanding of AI-native infrastructure applying ML to detect drift, anomalies, security patterns, or automate responses.

·       Grit, speed, and communication: you make things happen, align people fast, and fix issues yourself when needed.