NeoLotex Business Solutions - DevSecOps Architect - Cloud & Cyber Security (12-15 yrs)

Job Title : Cloud Security Architect & Engineer.

Location : Bangalore.

Experience : 12 to 15 years.

Our client is an IT services company specializing in business application development, web development, and software implementation.

We help businesses leverage technology to improve their operations and achieve their goals.

About the Role :

The DevSecOps Architect is responsible for integrating security practices into the DevOps process.

This role involves collaboration with development, operations, and security teams to ensure that security is embedded throughout the software development lifecycle.

The ideal candidate will have a deep understanding of both software development and security practices, and will be able to design and implement secure solutions that meet organizational goals.

Responsibilities :

- Design and implement security frameworks and policies within the DevOps process.

- Architect & Implement Solutions : Design and implement secure and scalable cloud, infrastructure, and applications solutions.

- Security Integration : Integrate security tools and practices into the CI/CD pipeline to automate security testing and vulnerability scanning.

- Infrastructure as Code (IaC) : Develop and maintain secure IaC using tools like Terraform, Ansible, or CloudFormation.

- Continuous Monitoring : Implement and maintain automated monitoring tools to identify vulnerabilities, misconfigurations, and security incidents in real-time.

- Collaborate closely with development, operations, and security teams to ensure security is integrated into every phase of the development lifecycle.

- Documentation & Training : Document security processes, provide training to team members and contribute to the development of best practices.

- Compliance : Ensure that security and compliance requirements (e.g, SOC 2, ISO 27001) are met.

- Automation : Lead the automation of security tasks, including vulnerability scanning, penetration testing, and incident response.

- CI/CD Pipelines: Integrate security best practices into CI/CD pipelines and automation tools (e.g, Jenkins, GitLab CI).

- Hands-on Experience : Demonstrate hands-on experience with cloud platforms (AWS, Azure, GCP) and container technologies (Docker, Kubernetes).

- Stay up-to-date with the latest security trends, threats, and technologies.

Qualifications :

Experience : 5+ years of experience in cybersecurity with a strong focus on cloud security.

Technical Skills :

- Strong understanding of cloud security principles and best practices.

- Expertise in IaC tools (Terraform, Ansible, CloudFormation).

- Experience with container security (Docker, Kubernetes).

- Proficiency in scripting languages (Python, Bash, etc.

- Knowledge of security tools and technologies (e.g, SIEM, IDS/IPS, firewalls, WAF).

- Experience with vulnerability scanning and penetration testing tools.

Certifications : (Preferred) Relevant security certifications such as AWS Certified Security Specialty, Azure Security Engineer Associate, or CISSP.

Education : Bachelor's degree in Computer Science, Cybersecurity, or a related field.

Soft Skills :

- Excellent communication and interpersonal skills.

- Strong problem-solving and analytical skills.

- Ability to work independently and as part of a team.