DevSecOps Engineer - Cloud Infrastructure Security

Experience Level : 4+ Years

Job Summary :

We are seeking an experienced DevSecOps Engineer with a strong background in integrating security into the DevOps lifecycle.

The candidate will be responsible for automating security practices, implementing CI / CD security controls, and ensuring secure infrastructure deployment across cloud and on-prem environments.

Key Responsibilities :

• Implement and maintain CI / CD pipelines with integrated security checks and automation.
• Conduct vulnerability assessment, threat modeling, and risk analysis across development and production environments.
• Integrate SAST, DAST, and dependency scanning tools into the build and release pipelines.
• Collaborate with development, operations, and security teams to define and enforce secure coding and deployment standards.
• Manage and maintain cloud infrastructure security (AWS / Azure / GCP), ensuring compliance with organizational and regulatory standards.
• Automate configuration management and policy enforcement using Terraform, Ansible, or similar tools.
• Monitor and respond to security alerts, incidents, and audit findings.
• Implement container security practices for Docker and Kubernetes environments.
• Stay updated with the latest security threats, tools, and industry trends to recommend and implement Skills & Tools :
• DevOps Tools : Jenkins, GitLab CI / CD, Azure DevOps, GitHub Actions
• Security Tools : SonarQube, Checkmarx, OWASP ZAP, Trivy, Snyk, Aqua Security
• Infrastructure as Code (IaC) : Terraform, CloudFormation, Ansible
• Cloud Platforms : AWS / Azure / GCP
• Containerization : Docker, Kubernetes, Helm
• Scripting : Python, Bash, PowerShell
• Monitoring & Logging : ELK Stack, Prometheus, Grafana, Splunk
• Version Control : Git

Qualifications :

Preferred Certifications (Optional) :

(ref : hirist.tech)