Please note - Looking for highly qualified, dynamic, motivated and hands on DevSecOps leader who can work onsite in our Hi-Tech city office. Should be able to build a team with 2-3 additional engineers.
Role : DevSecOps Lead Engineer
Position Overview
SimplifyVMS is seeking an experienced DevSecOps Lead Engineer with over 10 years of proven expertise in building and securing global, multi-tenant SaaS platforms . The ideal candidate will have deep hands-on experience in DevSecOps practices, automation, and cloud-native security within an AWS environment , coupled with a strong technical background in the MEAN stack (MongoDB, Express.js, Angular, Node.js) and MACH architecture (Microservices, API-first, Cloud-native, Headless).
This leadership role will oversee the design, implementation, and continuous improvement of secure CI / CD pipelines, cloud infrastructure, and application security across SimplifyVMS’s global SaaS offerings.
Key Responsibilities
DevSecOps Leadership
- Lead and mentor the DevSecOps team, driving a “security by design” culture across engineering.
- Define and implement DevSecOps strategies aligned with MACH principles for global SaaS platforms.
- Partner with development, QA, product, and infrastructure teams to integrate security at every stage of the SDLC.
Cloud & Infrastructure Security
Architect and secure highly available, multi-tenant AWS cloud environments.Design infrastructure as code (IaC) using Terraform / CloudFormation.Implement robust monitoring, logging, and alerting strategies (e.g., CloudWatch, ELK, Prometheus).Application & Data Security
Embed automated security scanning and compliance validation into CI / CD pipelines.Ensure secure APIs, microservices, and containerized workloads across Kubernetes / ECS / EKS.Apply advanced security practices for MongoDB and MEAN stack applications in a multi-tenant context.Compliance & Governance
Ensure compliance with global regulatory frameworks (e.g., GDPR, SOC 2, ISO 27001).Develop and enforce policies for identity and access management, data protection, and incident response.Innovation & Optimization
Evaluate and implement modern DevSecOps tools for vulnerability management, secrets management, and SAST / DAST.Drive continuous improvement initiatives in automation, scalability, and cost optimization.Required Skills & Qualifications
Experience : 10+ years in DevOps / DevSecOps, with at least 5 years leading security-driven initiatives for global SaaS platforms .Architecture : Deep understanding of MACH architecture and microservices in multi-tenant SaaS contexts.Cloud : Advanced AWS expertise (VPC design, IAM, EKS / ECS, Lambda, S3, RDS, CloudFront, Route 53, WAF, GuardDuty, etc.).CI / CD : Proven experience with CI / CD pipelines (Jenkins, GitLab CI, GitHub Actions, or equivalent) with integrated security gates.Containers & Orchestration : Strong Kubernetes / Docker knowledge, including securing workloads in production.Security Tooling : Hands-on experience with tools like SonarQube, Snyk, Aqua, Prisma Cloud, HashiCorp Vault, etc.Programming / Stack : Strong foundation in MEAN stack with security-focused coding practices.IaC & Automation : Proficiency with Terraform / CloudFormation and scripting (Python, Bash, etc.).Soft Skills : Strong leadership, communication, and cross-functional collaboration abilities.Preferred Qualifications
Certifications such as AWS Certified Security – Specialty , CISSP , CISM , or Certified Kubernetes Security Specialist (CKS) .Prior experience securing multi-tenant SaaS systems at scale .Familiarity with DevSecOps maturity frameworks and security governance in global enterprises.Why Join SimplifyVMS?
Be part of a global SaaS leader revolutionizing vendor management with a cutting-edge MACH-based architecture .Lead security and DevSecOps strategy in a high-growth, multi-tenant environment .Collaborate with world-class engineers across MEAN stack, AWS cloud, and modern DevSecOps tooling.Opportunity to shape and secure a next-generation platform used by enterprises worldwide.