Experience : 8 to 12 Years
Role : Engineering Manager - DevSecOps
Role Overview
We are looking for a seasoned Engineering Manager - DevSecOps to lead and scale our
DevSecOps function. This role will be responsible for embedding security into every stage of the SDLC while ensuring high deployment velocity, platform reliability, and regulatory compliance. You will lead a team responsible for CI/CD, cloud security, infrastructure automation, compliance governance, and secure engineering practices across the organization.
Key Responsibilities
- Leadership & Team Management :
- Build, mentor, and scale a high-performing DevSecOps team.
- Drive a strong culture of security-first engineering and automation.
- Set OKRs, conduct performance reviews, and develop team capability.
- Collaborate closely with Engineering, SRE, Security, and Product teams.
- DevOps & CI/CD Excellence :
- Own and optimize CI/CD pipelines for reliability, security, and speed.
- Implement shift-left security practices in development workflows.
- Improve release processes with automated quality and security gates.
- Enable secure, zero-downtime deployment strategies.
- Cloud & Infrastructure Security :
- Oversee cloud environments (AWS/GCP/Azure) with strong governance controls.
- Drive Infrastructure-as-Code (Terraform, CloudFormation, etc.).
- Implement secure cloud architecture, IAM policies, and network segmentation.
- Strengthen container security (Docker, Kubernetes).
- Application & Platform Security :
- Implement SAST, DAST, SCA, and container scanning tools.
- Integrate security checks into CI pipelines.
- Lead vulnerability management and remediation processes.
- Conduct security reviews and threat modeling for critical systems.
- Ensure secrets management and encryption best practices.
- Compliance & Governance :
- Ensure adherence to fintech regulatory and security requirements.
- Support audits (ISO 27001, SOC 2, PCI-DSS, etc.).
- Build and maintain security monitoring and incident response processes.
- Track and report risk, compliance, and security posture metrics to leadership.
- Automation & Reliability :
- Drive automation to reduce manual processes and operational toil.
- Improve observability, logging, and monitoring practices.
- Partner with SRE to enhance resilience and disaster recovery processes.
Required Qualifications
- 8+ years of experience in DevOps, SRE, Security Engineering, or related domains.
- 2+ years of engineering management experience.
- Strong hands-on expertise in cloud platforms (AWS/GCP/Azure).
- Experience with CI/CD tools (Jenkins, GitHub Actions, GitLab CI, etc.).
- Deep understanding of DevSecOps principles and secure SDLC.
- Hands-on experience with containerization and orchestration (Docker, Kubernetes).
- Experience with security tools (SAST, DAST, vulnerability scanners).
- Strong knowledge of IAM, network security, and encryption standards.
- Proficiency in at least one scripting/programming language (Python, Go, Bash)
(ref:hirist.tech)
