DevSecOps Engineer

The Role: DevSecOps Engineer 

We are looking for a skilled DevSecOps Engineer with over 3 years of experience and expertise in AWS security. This role focuses on ensuring the security of our cloud infrastructure and applications while fostering collaboration between development, operations, and security teams. In addition to security, the role involves managing cloud infrastructure using Terraform and contributing to overall DevOps practices. 

What You’ll do 

• Cloud Security Design & Implementation: Design, implement, and manage secure AWS cloud infrastructure, ensuring adherence to best practices in security, scalability, and availability. 
  

• Infrastructure as Code (IaC): Develop and maintain cloud infrastructure using Terraform, ensuring version control, scalability, and ease of deployment. 
  

• Security Automation: Develop and maintain CI/CD pipelines with integrated security checks to enable secure and rapid software delivery. 
  

• Risk Assessment: Identify vulnerabilities, assess risks, and implement security measures to protect cloud environments. 
  

• Compliance Management: Ensure compliance with regulatory standards and internal policies (e.g., GDPR, HIPAA, ISO 27001) across the cloud infrastructure. 
  

• Monitoring & Incident Response: Monitor and respond to security incidents using AWS services like CloudTrail, GuardDuty, and Security Hub. 
  

• Collaboration & Training: Work with development and operations teams to implement secure coding practices and conduct security training. 
  

• DevOps Practices: Collaborate with teams to ensure smooth integration of security into the DevOps pipeline, enabling automated deployments and scaling. 
  

Requirements

Basic Qualifications 

• 3+ years of hands-on experience in a DevOps Engineer role, SecOps or cloud security roles. 
  

• Extensive experience with AWS services (EC2, S3, VPC, Lambda, RDS, etc.) 
  

• Strong proficiency in Infrastructure as Code (IaC) using Terraform, AWS CDK, or CloudFormation. 
  

• Demonstrated expertise in building, managing, and automating CI/CD pipelines (e.g., GitHub Actions, Jenkins). 
  

• Advanced scripting skills in Python and Bash for automation and tool development. 
  

• Expertise in Linux system administration (Ubuntu, CentOS, etc.). 
  

• Deep understanding of networking, security practices, and monitoring in cloud environments. 
  

• Experience with containerization and orchestration tools such as Docker and Kubernetes. 
  

• Knowledge of security testing tools (e.g., OWASP ZAP, Snyk, or Burp Suite). 
  

Skills 

• Cloud Platforms: Advanced AWS Cloud expertise (EC2, VPC, S3, Lambda, RDS, CloudFront, etc.) 
  

• IaC Tools: Terraform, AWS CDK, CloudFormation 
  

• CI/CD Tools: GitHub Actions, Jenkins 
  

• Scripting Languages: Python, Bash 
  

• Containerization: Docker, Kubernetes 
  

• Operating Systems: Linux (Ubuntu, CentOS, etc.) 
  

• Version Control: Git, GitHub, GitLab