DevSecOps Architect - Abu Dhabi

We are looking for DevSecOps Architect in Abu Dhabi.

Below is the job description:

+15 years deep experience in IT Security Consulting with focus on DevSecOps Consulting, Risk Assessment, Privacy Assessment (NIST 800-53), Threat and Vulnerability Management, Vulnerability Assessment Penetration Testing (VAPT), Secure Code Review, Security Architecture Review, IT Security Governance, Risk & Compliance, Cloud Security and Migrations.

Responsibilities :

• Develop and implement a comprehensive DevOps strategy that aligns with the company's business goals, covering automation, CI/CD pipelines, and deployment processes.
• Architect and oversee the deployment of scalable, resilient infrastructure using cloud services and container orchestration (e.g., Kubernetes, Docker), ensuring optimal resource utilization.
• Facilitate collaboration between development, operations, and QA teams to streamline workflows, enhance communication, and promote a culture of continuous improvement.
• Design and implement robust monitoring, logging, and alerting systems to ensure high availability and quick resolution of incidents, while also establishing best practices for incident management.
• Integrate security practices into the DevOps lifecycle, ensuring compliance with industry standards and regulations, and conducting regular assessments to identify and mitigate risks.
• Review, interpret and respond to detailed business requirements specifications to ensure alignment between customer expectations and current or future ICT capability.
• Provide input to the strategic direction of technology investments to assist in the development of the enterprise architecture and maximize the return on technology investment
• Within the agreed enterprise architecture, define and design technology solutions to assist the business in meeting their business objectives.
• Develop, test and implement technology solutions and report on delivery commitments to ensure solutions are implemented as expected and to agreed timeframes .
• Identify system, infrastructure and project interdependencies and balance competing demands to ensure project deliverables are achieved.
• Finding the best tech solution among all possible to solve the existing business problems
• Determines operational feasibility by evaluating analysis, problem definition, requirements, solution development, and proposed solutions.
• Obtains and licenses software by obtaining required information from vendors; recommending purchases; testing and approving products.

Educational Requirements/ Qualifications:

Bachelor's Degree in such as computing, computer science, information technology, software development or software engineering.

Experience & Certification

• 10+ Years of experience in similar field.
• Certification for Certified Solutions Architect

Skills:

• Enterprise, Solutions, Cloud and Hybrid Cloud Architecture
• APIs (Grpc, Rest & Graphql), SOA, Microservices, Cloud Native & Serverless.
• Docker, Kubernetes, and Rancher or OpenShift.
• Domain Driven Design, Event Storming & Test‑Driven Development.
• Agile Methodology and practices using scrum and Kaban frameworks.
• Event Driven, CQRS/Event Sourcing, Reactive Architecture.
• dotnet / C# & Angular.
• DevOps, GitOps, and CICD Implementation and Architecture.
• Gitlab, Jenkins, terraform, ArgoCD, and drone CI.
• Configuration management tools like Ansible, Chef, or Puppet
• monitoring tools like Prometheus and Data Visualization tools like Grafana
• Hands-on experience with cloud platforms like AWS, Azure or GCP
• Strong scripting skills (Python, Bash, PowerShell, etc.).
• Excellent understanding of networking, firewalls, load balancing, and security protocols.
• IaC Security: Checkov, Terrascan, TFSec, Kube-bench.
• Cloud Security Tools: AWS Security Hub, Azure Security Center, GCP Security Command Center, Prisma Cloud, GuardDuty.

Security Frameworks and Practices:

• Secure coding standards and best practices.
• Implementation of Zero-Trust Architectures.
• Vulnerability Management, Threat Modeling, and Risk Assessment.
• Compliance and governance frameworks: SOC 2, ISO 27001, NIST, HIPAA, FedRAMP.