We're seeking a passionate and experienced DevSecOps Engineer to join our growing engineering team. In this role, you’ll be at the forefront of securing our CI/CD pipelines, cloud infrastructure, and development practices. You’ll work cross-functionally with developers, operations, and security teams to embed security into every stage of the software development lifecycle.
Key Responsibilities:
- Design and implement security automation in CI/CD pipelines (GitLab, Jenkins, etc.)
- Integrate static/dynamic code analysis tools (SAST, DAST, SCA) into developer workflows
- Monitor, detect, and respond to infrastructure security threats
- Collaborate with development teams to enforce secure coding best practices
- Manage secrets, keys, and access policies securely across environments
- Build Infrastructure as Code (IaC) with a focus on security (Terraform, CloudFormation, etc.)
- Perform threat modeling, vulnerability assessments, and risk analysis
- Document security standards and educate teams on DevSecOps principles
✅ Required Qualifications:
- 1+ years experience in DevOps, Security Engineering, or related role
- Hands-on experience with CI/CD tools and pipelines
- Strong knowledge of cloud platforms (AWS, Azure, Huawei or GCP)
- Experience with IaC and container security (Docker, Kubernetes)
- Familiarity with security tools like SonarQube,Codeart,Checkmarx, Aqua, Prisma Cloud, etc.
- Proficiency in scripting languages (Python, Bash, etc.)
- Deep understanding of OWASP Top 10 and other security frameworks
🌟 Nice to Have:
- Certifications such as AWS Security, SSCP or CCSP
- Experience with compliance standards (ISO 27001, SOC 2, PCI-DSS)
- Exposure to zero-trust architectures and DevSecOps frameworks
- Passion for automating everything and a mindset of continuous improvement
Send your resume and a short note to [thj221@gmail.com]
Subject line: DevSecOps Engineer Application – [Your Name]
Generating Apply Link...
.png)
