Job Title: DevSecOps Engineer

Work Location: UAE, Dubai.

Role Summary

We are seeking an experienced DevSecOps Engineer to support and enhance our digital platforms and cloud environments. This role focuses on CI/CD automation, infrastructure provisioning, release management, application reliability, and security integration.

The ideal candidate will possess strong hands-on scripting and coding expertise to automate deployment pipelines, optimize performance, and improve system scalability. The role also bridges Cybersecurity and Software Development teams, supporting VAPT activities and driving remediation efforts to ensure timely closure of security findings.

Strong expertise in Linux (Ubuntu) and NGINX hosting environments is required.

Key Responsibilities

CI/CD & Release Automation

• Design, build, and maintain CI/CD pipelines
• Automate build, test, and deployment workflows
• Implement blue-green and rolling deployment strategies
• Improve release reliability and reduce deployment failures

Coding & Automation

• Develop automation scripts using PowerShell, Bash, and Python
• Support backend service integrations where required
• Write and optimize YAML pipeline configurations
• Contribute to performance tuning and debugging

Cloud, Infrastructure & Application Security

• Manage cloud environments (Azure preferred, AWS acceptable)
• Implement Infrastructure as Code (Terraform / ARM / Bicep)
• Configure and manage container orchestration (Docker / Kubernetes)
• Ensure high availability and disaster recovery readiness
• Implement security baselines (e.g., CIS benchmarks)
• Perform VM security hardening prior to production rollout
• Contribute to Zero-Trust architecture and defense-in-depth strategies
• Configure IAM policies and enforce least-privilege access
• Monitor container and workload security

Monitoring & Stability

• Implement logging and monitoring solutions
• Conduct root cause analysis for production incidents
• Maintain uptime in line with defined SLAs

Vulnerability & Compliance Management

• Track and drive remediation of high-risk security findings
• Support internal and external VAPT engagements
• Ensure compliance within PCI DSS CDE environments
• Design encryption mechanisms for sensitive data (PII, PHI) at rest and in transit
• Lead vulnerability remediation with development and infrastructure teams
• Develop mitigation strategies for zero-day threats
• Implement compensating controls aligned with compliance standards
• Analyze and remediate API security vulnerabilities

Required Skills

• Strong scripting/coding expertise (Python, PowerShell, Bash)
• Experience with CI/CD tools (Azure DevOps, GitHub Actions, Jenkins)
• Hands-on cloud experience (Azure preferred)
• Containerization and orchestration (Docker, Kubernetes)
• Experience working with APIs and microservices
• Strong understanding of Git version control

Key Deliverables

• Fully automated deployment pipelines
• Reduced release failures and improved deployment efficiency
• Infrastructure automation coverage
• High availability of digital platforms
• Secure and scalable cloud environments