Principal DevSecOps Engineer

• Design & Build: Architect secure, scalable, and automated CI/CD pipelines and infrastructure across cloud platforms like AWS, Azure, and GCP.
• Secure the SDLC: Seamlessly integrate security tools and practices (SAST, DAST, IaC scanning) into every stage of development.
• Drive Automation: Optimize and automate build, test, and deployment workflows using tools like GitHub Actions, ArgoCD, and Terraform.
• Lead Containerization: Package and deploy applications efficiently with Docker, Helm, and Kubernetes.
• Cloud Security Expertise: Apply secure cloud architecture best practices and configuration management for multi-cloud environments.
• Monitor & Respond: Implement robust observability with tools like Prometheus, Grafana, and integrate with SIEM solutions like Splunk.
• Enable Dev Teams: Foster a collaborative culture across security, development, and operations by offering guidance, mentorship, and knowledge-sharing.
• Stay Ahead: Continuously evaluate new tools and trends to keep our DevSecOps practices future-ready.
• Document & Educate: Develop clear documentation and lead internal training on tools, processes, and security best practices.

What You Bring

• Education & Experience:
  • Bachelor’s degree in Computer Science, IT, or related field.
  • 9+ years of experience in DevSecOps, DevOps, or cloud security engineering roles.
• Technical Expertise:
  • CI/CD pipeline design using modern tools (e.g., GitHub Actions, GitOps, ArgoCD).
  • Strong knowledge of Infrastructure as Code (Terraform, Kubernetes).
  • Deep experience with containerization (Docker, Helm 3).
  • Hands-on experience integrating security into SDLC (SAST, DAST, IaC scanning).
  • Strong scripting skills in Python, Bash, or Go.
  • Familiarity with Prisma Cloud, SonarQube, Artifactory, Nexus, and cloud-native security tooling.
  • Proficiency with Linux/Unix systems, Apache/Nginx, and system troubleshooting