We are seeking a vigilant and skilled
SecDevOps Engineer to bridge the gap between development, operations, and security. In this role, you will not only maintain our CI/CD pipelines and infrastructure but also ensure they are secure by design. You will be responsible for shifting security leftautomating security checks, managing vulnerabilities, and ensuring that our infrastructure aligns with industry compliance standards without slowing down the development velocity.
Key Responsibilities
- Secure CI/CD Implementation: Design and maintain CI/CD pipelines, integrating automated security testing tools (SAST, DAST, SCA) directly into the build process (e.g., SonarQube, OWASP ZAP).
- Infrastructure Security: Manage Infrastructure as Code (IaC) using Terraform or Ansible with a focus on security compliance and hardening (e.g., ensuring encrypted storage, least privilege access).
- Vulnerability Management: Proactively monitor, scan, and patch infrastructure and applications for vulnerabilities (CVEs); collaborate with developers to remediate code-level security issues.
- Identity & Access Management (IAM): Configure and audit cloud access policies (AWS/Azure/GCP) to enforce the Principle of Least Privilege.
- Container Security: Secure containerized environments (Docker/Kubernetes) by implementing image scanning and runtime security policies.
- Incident Response: Participate in security incident response activities and root cause analysis for security breaches or anomalies.
- Compliance & Audit: Ensure infrastructure and deployments comply with security standards (ISO 27001, SOC2, or GDPR) and assist in technical audits.
Requirements
- Experience: 25+ years of professional experience in DevOps with a demonstrated focus on CI/CD and Security with strong scripting/automation skills.
- DevOps Tool chain: Strong hands-on experience with CI/CD tools (Jenkins, GitLab CI, GitHub Actions) and Version Control (Git).
- Security Tools: Proficiency with security scanning tools such as SonarQube, Trivy, OWASP ZAP, Burp Suite, or Snyk.
- Cloud Security: Solid understanding of cloud security models (GCP/AWS/Azure), including Security Groups, IAM, and VPC configurations.
- Scripting: Strong proficiency in Python, Bash, or Go to automate security tasks.
- Containerization: Experience securing Docker containers and Kubernetes clusters.
- Vulnerability Knowledge: Familiarity with OWASP Top 10 vulnerabilities and how to mitigate them.
Preferred Skills (Good To Have)
- Certifications: Any Certified DevSecOps Professional (CDP) or equivalent
- Monitoring: Experience with security monitoring and SIEM tools (e.g., Splunk, ELK Stack for security logs, Wazuh).
- Policy as Code: Experience with tools like Open Policy Agent (OPA) or Sentinel.
- Compliance: Basic understanding of regulatory frameworks like HIPAA, PCI-DSS, or GDPR.
Benefits
- Impactful Work: Opportunity to contribute to projects used by over 100 top MNC companies and a large 10 million+ customer base.
- Direct Collaboration: Employees have the opportunity to work closely and communicate directly with the Founding Team.
- Optimal Work Structure: We operate on a 5-day working schedule.
- Professional Development: Committed to growth through eLearning, workshops, and the use of advanced AI models in day-to-day operations.
- Comprehensive Well-being: Provision of on-demand comprehensive health insurance coverage with a Top-up facility for Parents, Spouse, and Children.
- Dynamic Environment: Experience the energy of a startup, allowing employees to take on diverse responsibilities, learn new skills, and make a difference.
