DevSecOps Architect - SIEM Tools

Job Summary :

We are looking for a seasoned DevSecOps Architect with over 12+ years of experience to lead the design and implementation of secure, scalable, and automated DevSecOps solutions.

The ideal candidate will have deep expertise in CI / CD automation, cloud platforms (AWS, Azure, GCP), containerization, infrastructure as code (IaC), and security toolchains.

This role demands a strategic thinker capable of embedding security at every phase of the SDLC, while fostering a culture of collaboration and Zero Trust.

Key Responsibilities :

Architecture & Strategy :

• Define and drive the DevSecOps architecture roadmap aligned with business and security objectives.
• Lead the integration of security into CI / CD pipelines and cloud-native environments.
• Establish governance for secure coding, deployment, and operations practices.

Automation & CI / CD :

Architect and implement automated CI / CD pipelines using tools like Jenkins, GitLab CI, GitHub Actions, Azure DevOps, etc.

Embed security tooling (SAST, DAST, IAST) into build and deployment workflows.

Champion Infrastructure as Code (IaC) using Terraform, CloudFormation, or Pulumi.

Cloud Platforms :

Design secure architectures across AWS, Azure, and GCP.

Implement cloud-native security controls, identity management, and compliance frameworks.

Containerization & Orchestration :

Architect secure containerized environments using Docker and Kubernetes.

Define and enforce policies for image scanning, runtime protection, and cluster hardening.

Security & Monitoring :

Integrate and manage tools for static and dynamic code analysis.

Implement SIEM solutions and continuous monitoring for threat detection and incident response.

Conduct architecture reviews and threat modelling sessions.

Collaboration & Culture :

Promote secure coding practices and DevSecOps principles across engineering teams.

Advocate for Zero Trust architectures and continuous security validation.

Mentor teams on security automation and best practices.

Proposal Response & Solutioning :

Collaborate with sales and bid teams during RFP / RFI stages to define DevSecOps strategies.

Prepare technical proposals, solution blueprints, and effort estimates.

Conduct client workshops, assessments, and presentations articulating DevSecOps value.

Lead solution design and oversee implementation for client engagements.

Required Skills & Qualifications :

12+ years in DevOps / DevSecOps, including 3+ years in an architect role.

Strong scripting skills (Python, Bash, PowerShell).

Expertise in CI / CD tools and IaC frameworks.

Hands-on experience with AWS, Azure, and GCP.

Deep understanding of containerization and security using Docker / Kubernetes.

Familiarity with security tools : SonarQube, OWASP ZAP, Checkmarx, Fortify, etc.

Experience with SIEM tools : Splunk, ELK, Azure Sentinel.

Knowledge of SSDLC, Zero Trust Architecture, and compliance frameworks (e.g., NIST, ISO, CIS).

Preferred Certifications :

DevSecOps / Cloud Security :

AWS Certified Security Specialty

Microsoft Certified : Azure Security Engineer Associate

Certified Kubernetes Security Specialist (CKS)

Architecture :

TOGAF

AWS / Azure Certified Solutions Architect

Security :

CISSP

CCSP

Additional Requirements :

Must be travel-ready for client engagements and workshops.

(ref : hirist.tech)