Talent.com
This job offer is not available in your country.
DevSecOps Engineer

DevSecOps Engineer

People Prime Worldwidebangalore, karnataka, in
5 days ago
Job description

About Company : They balance innovation with an open, friendly culture and the backing of a long-established parent company, known for its ethical reputation. We guide customers from what’s now to what’s next by unlocking the value of their data and applications to solve their digital challenges, achieving outcomes that benefit both business and society.

Job Title : DevSecOps Engineer

Location : Bengaluru

Work Mode : Hybrid Mode

Experience : 6-8 years (5 years Relevant)

Job Type : Contract to hire (C2H)

Notice Period : - Immediate joiners.

Primary Responsibilities :

  • Integrate security tools (SAST, DAST, SCA, Secrets Scanning) into CI / CD pipelines.
  • Develop and maintain Infrastructure as Code (IaC) with built-in security controls.
  • Automate security testing and compliance checks in development workflows.
  • Work with developers and DevOps engineers to remediate vulnerabilities.
  • Monitor and respond to security alerts and incidents in DevOps environments.
  • Ensure security best practices in containerization, orchestration (e.g., Docker, Kubernetes), and cloud deployments (e.g., AWS, Azure, GCP).
  • Conduct regular security assessments and contribute to threat modelling.
  • Collaborate with compliance teams to enforce governance and audit controls.
  • Prepare and present detailed security reports, advisories, and remediation plans.
  • Maintain and configure security tools and ensure compliance with standards like OWASP Top 10, PCI-DSS, NIST, and SANS / CWE

Required / Mandate Skills :

  • Proficiency in SAST / DAST tools (e.g., Fortify, Veracode, Burp Suite Pro).
  • Hands-on experience with CI / CD tools (e.g. Jenkins, GitHub actions, GitLab CI / CD, Azure DevOps)
  • Strong understanding of DevSecOps principles, secure SDLC, and vulnerability management
  • Familiarity with container security (e.g., Aqua Security, Twistlock).
  • Programming knowledge (Java, .NET) to analyse and remediate code-level vulnerabilities
  • Experience with manual and automated scanning, VAPT, and API security testing

    • Certifications :

  • Mandatory : Certified Ethical Hacker (CEH)
  • Preferred : GCSA (Cloud Security and DevSecOps Automation), Certified DevSecOps Engineer (CDE).
    • Create a job alert for this search

    Engineer • bangalore, karnataka, in