About the Role:
We are seeking a highly skilled DevSecOps Engineer with 4–6 years of experience in managing cloud infrastructure, CI/CD pipelines, security automation, and Infrastructure as Code. The ideal candidate will have strong expertise in AWS Cloud, Terraform, security monitoring tools, and automation scripting using Python or Bash. This role involves designing secure, scalable, and automated deployment solutions while ensuring best-in-class security practices across the development lifecycle.
Key Responsibilities:
1. CI/CD Pipeline Development & Management
- Design, build, and maintain secure CI/CD pipelines using tools such as GitHub Actions, GitLab CI, Jenkins, or AWS CodePipeline.
- Integrate automated testing, security scans, code quality checks, and compliance validations.
- Manage multi-environment deployments and release automation.
- Implement secrets management and secure pipeline practices
2. Infrastructure as Code (IaC)
- Develop and maintain Terraform modules for provisioning AWS resources.
- Manage Terraform remote state using secure backends such as AWS S3 with DynamoDB locking.
- Implement IaC best practices: modular code, versioning, reusable components, and policy-as-code.
- Work with CloudFormation (preferred but optional).
3. AWS Cloud Engineering
- Configure, manage, and optimize AWS services: EC2, VPC, IAM, S3, Lambda, RDS, ECS/EKS, CloudWatch, CloudTrail, Route53, and more.
- Implement secure IAM policies, roles, Service Accounts, and RBAC models.
- Manage and support serverless architectures using AWS Lambda.
- Plan and execute cloud migrations including lift-and-shift, re-architecting, or hybrid deployments.
4. DevSecOps & Security Automation
- Integrate security tools into CI/CD, including:
- SAST, DAST, SCA (e.g., SonarQube, Checkmarx, Aqua, Prisma, Snyk)
- Container security (e.g., Trivy, Anchore)
- Implement security monitoring and alerting using:
- AWS Security Hub, CloudWatch, CloudTrail, WAF
- SIEM tools like Splunk, ELK/Elastic, or Datadog
- Automate compliance, vulnerability scanning, and incident response workflows.
- Define and enforce security policies for cloud resources and pipelines.
5. Automation & Scripting
- Create automation scripts using Python and Bash for operational tasks, monitoring, remediation, and deployment workflows.
- Develop serverless automation using AWS Lambda and event-driven architectures.
- Implement automated backup, disaster recovery, and infrastructure scaling.
6. Monitoring, Logging & Reliability
- Set up observability solutions using CloudWatch, Prometheus/Grafana, Datadog, ELK, or similar tools.
- Monitor application and infrastructure performance, reliability, and security posture.
- Troubleshoot pipeline issues, cloud performance issues, and deployment failures.
7. Collaboration & Governance
- Work closely with development, cloud, security, and operations teams to enable secure DevOps practices.
- Provide technical guidance and training on DevSecOps, AWS, and automation tools.
- Document architecture, processes, runbooks, and standards.
8. Incident Response & Compliance
- Set up threat detection tools (GuardDuty, CloudTrail, WAF, IDS/IPS).Own incident response processes and root-cause analysis when required.
- Contribute to compliance frameworks (SOC2, GDPR, ISO27001) where applicable.
Required Skills & Qualifications:
- Bachelor’s or Master’s Degree in Computer Science, Information Technology, or a related field.
- 4 to 6 years in a DevOps role or similar capacity.
- Experience building secure CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins, CodePipeline).
- Strong knowledge of automated testing, security scans, and release automation.
- Proficient in Infrastructure as Code (Terraform; CloudFormation optional).
- Experience managing Terraform remote state (S3 + DynamoDB).
- Solid hands-on expertise with AWS services (EC2, VPC, IAM, S3, Lambda, RDS, ECS/EKS, CloudWatch).
- Strong understanding of IAM security, roles, and RBAC.
- Experience with serverless architectures using AWS Lambda.
- Familiar with cloud migration strategies.
- Hands-on DevSecOps skills with SAST/DAST/SCA tools (SonarQube, Snyk, Checkmarx).
- Knowledge of container security tools (Trivy, Anchore).
- Experience with AWS security services (Security Hub, WAF, CloudTrail).
- Comfortable with SIEM tools (Splunk, ELK, Datadog).
- Strong scripting in Python and Bash for automation.
- Experience with observability tools (CloudWatch, Prometheus, Grafana, ELK).
- Strong troubleshooting skills for CI/CD, deployments, and cloud issues.
- Good collaboration skills with Dev, Cloud, and Security teams.
Location : Delhi, Saket
Work Mode : On Site (Mon-Sat)
Job Types: Full-time, Permanent
Pay: ₹700,000.00 - ₹1,000,000.00 per year
Work Location: In person
