Senior DevSecOps Engineer (Onsite)

We are seeking an experienced Senior DevSecOps Cloud Engineer to design, implement, and maintain robust, scalable, and secure cloud infrastructure. This role emphasizes integrating security at every stage of the development lifecycle, automating workflows, and streamlining CI/CD processes using a broad suite of AWS services, Infrastructure as Code (IaC) tools, and modern DevOps practices with a strong emphasis on Linux system administration. The ideal candidate will possess extensive technical skills, knowledge of cost optimization, strong security tooling expertise, and excellent communication abilities.

Cloud Infrastructure & Linux Administration

Responsibilities:
Design, deploy, and maintain AWS infrastructure using services such as EFS, RDS, ECS, EC2, VPC, Lambda, EventBridge, CloudWatch, CloudTrail, DynamoDB, and CloudFront
Optimize cloud architectures to reduce costs while ensuring high performance and reliability
Manage and optimize Linux-based servers and environments across production and development infrastructures, ensuring proactive monitoring and regular maintenance
Implement and integrate AWS security services (for example, GuardDuty, AWS Inspector, AWS Security Hub) to continuously monitor and protect cloud environments

Qualifications:
Extensive hands-on experience with the above AWS services
Strong Linux system administration skills, including tuning and securing Linux-based environments
Proven track record in implementing cost optimization strategies in cloud environments
Familiarity with AWS security best practices and threat detection tools such as GuardDuty, Inspector, and Security Hub

Infrastructure as Code

Responsibilities:
Implement Infrastructure as Code using Terraform to provision and manage cloud resources efficiently
Leverage IaC to enforce security, compliance, and best practices across multiple environments

Qualifications:
Proven experience with Terraform to configure, deploy, and manage cloud environments
Strong understanding of version-controlled infrastructure and compliance-driven provisioning

CI/CD & Automation

Responsibilities:
Build and manage CI/CD pipelines using Jenkins and GitHub Actions to automate code builds, tests, and deployments
Develop automation scripts with Python and Bash to support deployment, monitoring, and operational tasks
Integrate and automate MySQL and PostgreSQL database tasks such as provisioning, migrations, and backups within the development pipeline
Utilize Git for version control and to manage code repositories while collaborating with cross-functional teams
Implement SonarQube or similar open-source scanning tools to automate code quality and security checks

Qualifications:
Strong background in developing and maintaining CI/CD pipelines and automation solutions
Hands-on proficiency in Python, Bash, and Git
Experience integrating static application security testing (SAST), dynamic application security testing (DAST), and code-quality checks within CI/CD pipelines

Containerization & Orchestration

Responsibilities:
Implement containerization strategies using Docker and manage container orchestration with AWS ECS, optimizing deployments and resource utilization
Integrate container security scanning tools (for example, open-source scanners and AWS Inspector for containers) to identify and remediate vulnerabilities

Qualifications:
Proficiency in containerization technologies such as Docker and orchestration using AWS ECS
Familiarity with container security best practices, image scanning, and vulnerability management

Security & Identity Management

Responsibilities:
Configure and manage IAM policies, IAM Identity Center, and SSO integrations to enforce secure access
Implement AWS security best practices, ensuring that network configurations, monitoring, and logging (via CloudWatch and CloudTrail) meet organizational requirements
Automate and orchestrate security checks using AWS services such as GuardDuty, AWS Inspector, and AWS Security Hub, as well as open source security tools
Incorporate vulnerability scanning, intrusion detection, and compliance checks into build pipelines and runtime environments

Qualifications:
Solid understanding of networking fundamentals and AWS security best practices, with hands-on experience managing identity and access configurations
Experience implementing and managing security tooling (for example, GuardDuty, Inspector, Security Hub, SonarQube) in containerized and EC2 Linux deployments
Ability to automate security processes to achieve continuous compliance and threat detection

Soft Skills & Analytical Abilities

Qualifications:
Exceptional communication, presentation, and interpersonal skills, with the ability to articulate technical concepts to both engineering and non-technical executive-level stakeholders
Strong analytical and problem-solving skills, with the ability to translate complex engineering needs into actionable solutions
A minimum of 5 years of experience in DevOps, Cloud Infrastructure, or a related role managing large-scale systems, with a security-first mindset