JOB SUMMARY:

We are looking for a skilled and proactive DevSecOps Engineer to join our team. In this role, you will be responsible for designing and maintaining secure, scalable, and automated CI/CD pipelines, integrating security best practices throughout the development lifecycle, and collaborating across teams to ensure high-quality, secure application and infrastructure delivery.

REQUIRED SKILLS & QUALIFICATIONS:

• Proven experience as a DevSecOps Engineer or in a similar role.
• Hands-on expertise with CI/CD pipelines and GitLab SaaS (SHIP-HATS 2.0 preferred).
• Strong understanding of DevOps and security best practices, including security scanning, compliance checks, and threat modeling.
• Solid experience with Infrastructure as Code (IaC) tools: Terraform, CloudFormation.
• Familiarity with AWS services: ECS, Lambda, EC2, IAM, etc.
• Proficiency in scripting languages such as Python and Shell.
• Experience with containerization and container security (Docker, ECS, EKS).
• Knowledge of monitoring and observability tools: CloudWatch, CloudTrail, X-Ray, Dynatrace.

• Design and implement robust CI/CD pipelines using GitLab SaaS (SHIP-HATS 2.0), ensuring seamless software delivery and security integration.
• Collaborate with development, operations, and security teams to streamline application and infrastructure deployment.
• Develop and manage Infrastructure as Code (IaC) using tools such as Terraform and CloudFormation, with a focus on security compliance.
• Integrate and maintain security tools (e.g., vulnerability scanners, static/dynamic analyzers) within the DevOps workflow.
• Monitor and optimize the performance, security, and cost-effectiveness of DevOps resources and infrastructure.
• Troubleshoot and resolve issues related to CI/CD pipelines, infrastructure provisioning, and DevSecOps toolchains.
• Implement container security practices for services running on Docker, ECS, and EKS.
• Maintain logging and monitoring setups using tools like CloudWatch, CloudTrail, X-Ray, or Dynatrace.