DevOps Engineer

Role Summary

The DevOps Engineer is responsible for designing, implementing, and maintaining secure, scalable, and automated CI/CD pipelines. This role integrates security into every stage of the software development lifecycle, collaborating with development, operations, and security teams to ensure compliance, operational soundness, and high-quality output. The Engineer will also act as a key resource in driving the adoption of DevSecOps practices across squads, improving security posture and operational efficiency.

Key Responsibilities

Pipeline Design and Automation

• Develop, optimize, and maintain CI/CD pipelines with a focus on automation and security.
• Ensure seamless integration of testing, deployment, and monitoring tools within the pipeline.

Security Integration

• Embed security controls into the development and deployment workflows, ensuring compliance with enterprise standards.
• Implement tools for static and dynamic application security testing (SAST/DAST).
• Conduct threat modeling and vulnerability assessments as part of the pipeline.

Collaboration and Guidance

• Collaborate with development, operations, and security teams to embed DevSecOps principles into workflows.
• Act as a subject matter expert, providing hands-on guidance and training to squads on security and automation best practices.

Toolchain Management

• Evaluate, recommend, and integrate enterprise tools such as Jenkins, GitLab, SonarQube, and Kubernetes.
• Manage configurations and ensure tools are optimized for team archetypes (e.g., cloud-native, vendor platforms).

Monitoring and Reporting

• Define and track DevSecOps KPIs such as deployment frequency, lead time for changes, MTTR, and change failure rate.
• Build dashboards to visualize pipeline performance, security compliance, and operational metrics.

Continuous Improvement

• Identify and implement opportunities to streamline processes, reduce technical debt, and improve software delivery quality.
• Stay updated on DevSecOps trends, tools, and techniques, and share insights with the organization.

Skills and Competencies

Technical Skills:

• Proficiency in CI/CD tools (e.g., Jenkins, GitLab, Azure DevOps).
• Experience with scripting languages (e.g., Python, Bash, PowerShell).
• Hands-on experience with containerization and orchestration (e.g., Docker, Kubernetes).
• Strong understanding of security tools and practices (e.g., SAST, DAST, OWASP).
• Familiarity with infrastructure as code (IaC) tools like Terraform or Ansible.
• Experience with cloud platforms (e.g., AWS, Azure, Google Cloud).

Soft Skills:

• Strong problem-solving and analytical abilities.
• Excellent collaboration and communication skills.
• Ability to prioritize and balance multiple projects in a fast-paced environment.
• Strong attention to detail and commitment to quality.

Experience

• 5 years in DevOps, Security Engineering, or a related role.
• Proven experience in designing and implementing secure CI/CD pipelines.
• Hands-on experience with enterprise-level DevSecOps transformations is a plus.

Educational Requirements

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Relevant certifications (e.g., AWS Certified DevOps Engineer, Certified Kubernetes Security Specialist, CompTIA Security ) are a plus.

Expected Outcomes/Deliverables

• Secure and automated CI/CD pipelines tailored to team needs.
• Increased deployment frequency with reduced lead times.
• Comprehensive security integration across the development lifecycle.
• Clear documentation and training materials for squads adopting DevSecOps.
• Dashboards showcasing pipeline performance and security metrics.