Dev SecOps Engineer

What You'll Do:

Implement and manage CI/CD pipelines with embedded security gates.
Automate security testing (SAST, DAST, IAST) within the SDLC.
Build and manage infrastructure as code (IaC) with tools like Terraform, Ansible, or CloudFormation.
Monitor systems for security breaches and vulnerabilities using tools .
Collaborate with developers to perform secure code reviews and provide remediation guidance. Worked on tools- SonarQube, Cycode
Develop and enforce security policies and best practices across cloud environments (AWS, Azure, GCP).
Maintain and optimize container security (Docker, Kubernetes, etc.).
Support incident response and threat modeling activities.
Continuously research and implement emerging DevSecOps tools and practices.

Expertise You'll Bring:

Minimum 5 years of experience in DevSecOps, with strong knowledge of secure SDLC practices.
Hands-on experience in automating security testing tools such as SAST, DAST, and IAST.
Proficiency in building and maintaining CI/CD pipelines with integrated security controls.
Experience with Infrastructure as Code (IaC) tools like Terraform, Ansible, or CloudFormation.
Deep understanding of cloud platforms (AWS, Azure, GCP) and cloud security best practices.
Strong experience in container security tools and platforms such as Docker and Kubernetes.
Familiarity with code analysis tools like SonarQube and Cycode.
Ability to perform threat modeling, manage vulnerabilities, and support incident response.
Good collaboration skills with development and operations teams for secure software delivery.
Continuous learning mindset and ability to evaluate and adopt emerging DevSecOps tools