DevSecOps Lead - CI/CD Pipeline (9-14 yrs)

Key Responsibilities :

- Security Integration : Building security practices directly into the development lifecycle. Configure and maintain cloud infrastructure AWS, Azure, GCP according to industry security standards.

- Automation : Implementing automated security testing and compliance checks in CI/CD pipelines. Streamline security processes through automation within the development workflow.

- Risk Management : Detecting and resolving security vulnerabilities early in development. Conduct regular security assessments and vulnerability scans to protect the software development lifecycle. Track emerging security threats and vulnerabilities, recommending updates to security protocols.

- Team Collaboration : Building a security-minded culture through cross-team partnerships and training. Partner with development teams to embed secure coding practices and application design principles. Foster a security-minded culture by providing guidance and training on best practices.

- Incident Response : Handling security incidents and implementing preventive measures. Quickly identify, respond to, and resolve security incidents and potential threats.

Required Skills :

- Coding & Scripting : Strong programming skills in Python, Java, or Ruby for building automation solutions.

- DevOps Tools : Experience with CI/CD tools (e.g., Jenkins), container orchestration (e.g., Kubernetes), and infrastructure as code (e.g., Terraform).

- Cybersecurity : Deep understanding of security practices, threat modelling, risk assessment, and vulnerability management.

- Cloud Security : Expertise in securing cloud platforms (e.g., AWS, Azure) and implementing cloud-native security tools.

- Networking & Systems : Understanding of network architecture, protocols, and infrastructure security.

- Compliance Knowledge of key regulations like GDPR, HIPAA, and SOC 2.

- Problem-solving Sharp analytical skills for identifying and resolving security challenges.

- Communication Ability to collaborate across teams and build security awareness.

- Learning Mindset Drive to stay current with emerging security trends and technologies.

- Incident Response Skill in managing security incidents and implementing recovery measures.

Qualifications :

- Bachelor's degree in Computer Science, Information Security, or related field.

- Proven track record in DevOps, cybersecurity, or security-focused roles.

- Deep expertise with cloud platforms AWS, Azure, GCP and their security architectures.