DevSecOps Engineer

Role SummaryEmbed security across CI / CD pipelines, cloud infrastructure, and deployment workflows. Automate security controls, harden infrastructure, and collaborate with engineering and DevOps to ensure systems are secure, scalable, and resilient.Key ResponsibilitiesIntegrate SAST, SCA, DAST, and container security into CI / CD pipelinesAutomate security scans for code, dependencies, containers, and IaCImplement secure IAM, VPC, firewall, and network configurationsMonitor vulnerabilities, track remediation, and ensure SLA complianceWork with developers to fix security findings and improve coding practicesManage secure infrastructure using Terraform, Docker, Kubernetes, HelmConfigure secrets management, access policies, and zero-trust controlsSupport incident response and analyze cloud / platform security eventsDocument security practices, policies, and deployment guardrailsSkills & Experience3-7 years in DevSecOps / Application Security / Cloud SecurityStrong knowledge of secure SDLC, CI / CD, pipelines, and automationExperience with Prisma Cloud, Snyk, Checkmarx, SonarQube, Fortify, or similarFamiliar with AWS / GCP and Kubernetes securityGood understanding of IAM, network security, encryption, firewalls, and WAFScripting ability in Python, Shell, or YAMLBasic experience with Terraform or other IaC toolsMindsetSecurity-first, automation-focused, collaborative, and detail-oriented.