M03 - DevSecOps Engineer

Overview

We are seeking an experienced DevSecOps Engineer to design, automate, and maintain secure, scalable, and resilient cloud infrastructure and software delivery pipelines. You will play a key role in integrating security throughout the software development lifecycle, enabling development teams to deliver applications efficiently while maintaining high standards of security, reliability, and operational excellence.

The ideal candidate has strong expertise in cloud platforms, infrastructure automation, CI/CD, container technologies, and security best practices within modern DevSecOps environments.

Responsibilities

• Design, implement, and maintain secure, scalable, and highly available cloud infrastructure and deployment pipelines.
• Develop and automate infrastructure provisioning, configuration management, and deployment processes using Infrastructure as Code (IaC).
• Build, maintain, and optimize CI/CD pipelines to enable secure and efficient software delivery.
• Collaborate with development, security, and operations teams to integrate security throughout the software development lifecycle (SDLC).
• Monitor infrastructure, applications, and platform health using modern observability and monitoring tools.
• Troubleshoot and resolve infrastructure, application, and deployment issues, including participation in on-call support for critical incidents.
• Implement disaster recovery, backup, business continuity, and high availability solutions.
• Provision and manage cloud resources, virtual machines, containers, databases, and supporting infrastructure.
• Automate operational processes to improve efficiency, consistency, and system reliability.
• Implement security controls, vulnerability management, system hardening, secrets management, and compliance best practices across cloud and on-premise environments.
• Perform security assessments, threat analysis, risk mitigation, and incident response activities.
• Document infrastructure, security architecture, operational procedures, and automation workflows.

Requirements

• Degree or Diploma in Computer Science, Information Technology, Computer Engineering, Electronics Engineering, or a related discipline.
• Strong understanding of Software Development Lifecycle (SDLC), Agile methodologies, CI/CD, and DevSecOps practices.
• Proven experience designing and supporting highly available, secure, and scalable cloud infrastructure.
• Hands-on experience with cloud platforms such as AWS, Microsoft Azure, or Google Cloud Platform (GCP).
• Experience with Infrastructure as Code (IaC) tools such as Terraform, Ansible, Puppet, Vagrant, or similar technologies.
• Strong experience with containerisation and orchestration technologies including Docker and Kubernetes.
• Experience with CI/CD platforms such as GitLab CI, GitHub Actions, Jenkins, Bitbucket Pipelines, or ArgoCD.
• Proficiency in scripting or programming languages such as Bash, PowerShell, Python, or Go.
• Experience with Git and modern source control workflows.
• Knowledge of Cloud Native Computing Foundation (CNCF) technologies such as Helm, Prometheus, ArgoCD, Istio, Gatekeeper, or Crossplane.
• Experience implementing monitoring, logging, and observability solutions for cloud-native environments.
• Strong troubleshooting and analytical skills across infrastructure, networking, and application layers.
• Experience implementing backup, disaster recovery, and business continuity solutions.
• Understanding of networking concepts including firewalls, routing, DNS, VPNs, subnets, and access controls.

Security & Compliance

• Experience integrating security controls into CI/CD pipelines and cloud-native architectures.
• Hands-on experience performing vulnerability assessments, system hardening, and security remediation.
• Familiarity with enterprise security tools such as HashiCorp Vault, Tenable, Sonatype Nexus IQ, HP Fortify, Elasticsearch, or native cloud security services.
• Strong understanding of identity and access management (IAM), secrets management, encryption, and Zero Trust security principles.
• Knowledge of security frameworks and compliance standards such as ISO 27001, NIST, CIS Benchmarks, or OWASP.
• Experience working within government, regulated, or security-sensitive environments is advantageous.

Nice to Have

• Professional certifications such as CISSP, CISM, CREST, AWS Security Specialty, Azure Security Engineer, or equivalent.
• Experience leading or contributing to DevSecOps transformation initiatives.
• Experience implementing service mesh security using technologies such as Istio or Linkerd.
• Experience securing APIs, implementing Zero Trust architectures, and enterprise secrets management solutions.