DevSecOps Engineer

We are looking for a skilled DevSecOps Engineer to embed security into our multi-cloud (AWS + Azure) environment and accelerate adoption of Cloud-Native Application Protection Platforms (CNAPP). You will be hands-on in integrating security into CI/CD pipelines, automating security controls, and collaborating with DevOps, Cloud, and Security teams to ensure security is built in, not bolted on. 

This is a highly technical, engineering-focused role where you will design and implement tools, processes, and guardrails that protect applications, containers, and infrastructure across hybrid and cloud-native environments. 

What we offer

• Opportunity to drive cloud security transformation across multi-cloud enterprises. 
• Work with cutting-edge CNAPP technologies and influence security strategy. 
• Collaborative environment with engineering, data, and DevOps teams. 
• Competitive compensation, benefits, and career development opportunities.

Key responsibilities

• Security Automation & CI/CD 
• Integrate security scanning (SAST, DAST, SCA, IaC scanning) into CI/CD pipelines. 
• Automate security guardrails for IaC (Terraform, Bicep, CloudFormation). 
• Build pipeline controls for container image scanning, secrets management, and vulnerability remediation. 
• CNAPP & Cloud Security Engineering 
• Deploy and tune CNAPP solutions (CSPM, CWPP, CIEM, KSPM, container security). 
• Engineer integrations between CNAPP platforms and SIEM/SOAR/XDR. 
• Assist in building secure cloud reference implementations for AWS and Azure workloads. 
• Infrastructure & Application Security 
• Implement least privilege IAM policies across AWS and Azure. 
• Contribute to Kubernetes, container, and serverless security hardening. 
• Support network security policies, secure endpoints, and service-to-service communications. 
• Collaboration & Enablement 
• Partner with DevOps and App Engineering teams to embed security practices into development lifecycles. 
• Support Cloud Security Architects in validating new patterns and controls. 
• Provide tooling, documentation, and knowledge sharing to accelerate secure adoption. 

Mandatory requirements

• 3–5+ years of experience in DevSecOps, Cloud Security Engineering, or Site Reliability Engineering. 
• Hands-on experience with AWS and Azure cloud platforms. 
• Strong experience with: 
• CI/CD pipelines (GitHub Actions, Azure DevOps, GitLab CI, Jenkins). 
• IaC & IaC Security (Terraform, Bicep, CloudFormation, tfsec, Checkov). 
• Container orchestration (Docker, Kubernetes, EKS, AKS). 
• Security tools (Trivy, Aqua, Prisma Cloud, Wiz, Orca, or Defender for Cloud). 
• Knowledge of identity and access management, encryption, and secrets management. 
• Scripting skills (Python, Bash, or PowerShell).