DevSecOps Engineer

Key Responsibilities

Cloud & Infrastructure

• Design, provision, and manage cloud infrastructure (AWS/Azure/GCP) using Infrastructure-as-Code
• Maintain and improve cloud reliability, availability, and scalability
• Support multi-environment (dev/test/stage/prod) cloud architectures

CI/CD & Automation

• Build, maintain, and enhance CI/CD pipelines for application and infrastructure delivery
• Automate build, test, release, and deployment processes
• Improve release reliability, speed, and quality through automation

Containers & Runtime

• Support containerised workloads using Docker and Kubernetes/ECS
• Assist with production deployments and runtime optimisation
• Collaborate on container and platform best practices

Security & Governance

• Embed security best practices into pipelines, infrastructure, and runtime environments
• Support compliance requirements in regulated or government environments
• Work with security teams on baseline hardening, access controls, and vulnerability management

Observability & Operations

• Implement monitoring, logging, and alerting solutions
• Support incident response, troubleshooting, and root cause analysis
• Contribute to capacity planning, reliability improvements, and operational excellence

Required Skills & Experience

Core

• 3–10+ years of experience in DevOps / DevSecOps / Cloud / Platform Engineering
• Strong experience with at least one major cloud provider (AWS, Azure, or GCP)
• Hands-on Infrastructure-as-Code experience (Terraform preferred; CloudFormation, Pulumi, etc. acceptable)
• Experience building or maintaining CI/CD pipelines (GitLab, Jenkins, Azure DevOps, etc.)
• Strong Linux fundamentals and scripting (Bash, Python, Go, etc.)

Containers & Systems

• Experience with Docker and container orchestration (Kubernetes and/or ECS)
• Understanding of networking, virtualization, and distributed systems

Observability

• Familiarity with monitoring and logging tools (Prometheus, Grafana, ELK, etc.)

Nice to Have

• Experience in regulated or government environments
• Exposure to DevSecOps tooling (SAST, DAST, dependency scanning, container scanning)
• Experience with secure cloud governance or compliance frameworks
• Knowledge of AI/ML platforms or data infrastructure
• SRE or platform engineering experience