DevSecOps Engineer

DevSecOps Engineer

posted by: spj_bot

A DevSecOps Engineer is responsible for integrating security practices into the entire software development lifecycle, ensuring that applications, infrastructure, and operations are secure by design. This role blends development, operations, and security expertise to maintain high-availability systems while proactively managing security risks and compliance requirements.

Responsibilities:

  • Security Integration in CI/CD: Embed security checks, vulnerability scanning, and automated compliance tests into CI/CD pipelines.
  • Infrastructure Security: Implement secure cloud and on-premises infrastructure using best practices for access control, encryption, and network segmentation.
  • Container & Kubernetes Security: Manage and harden containerized environments, including image scanning, runtime protection, and pod security policies.
  • Monitoring & Incident Response: Use observability tools to monitor systems for security threats, respond to incidents, and implement continuous improvements.
  • Collaboration & Education: Work closely with developers, SREs, and QA teams to ensure security-first development practices, provide guidance on secure coding, and conduct threat modeling.
  • Compliance & Governance: Ensure systems and processes comply with standards like ISO27001, SOC 2, GDPR, NIST, and maintain audit readiness.

Requirements

Job Skills

network security continuous improvements incident response identity and access management harden infrastructure security terraform aws security specialty automation containerized compliance requirement security policy ul professional engineer access control integration cloud platforms secure coding GCP jenkins high availability threat modeling penetration testing container security management image circleci devsecops governance vulnerability scanning gitlab data system manager prometheus nice learn support security manage python integrating managing security microservices best practices monitor systems collaboration operations programming docker kubernetes workflows grafana blockchain automated audit wow security pattern security services scripting infrastructure as code software development infrastructure logging encryption english typescript bash investment network segmentation loyalty program audits
View the job post & apply
Login/Signup

SPJ is not just a platform; it's a transformative force in the maritime sector. We reinvent job discovery and collaboration, leveraging cutting-edge AI to create a space where careers thrive and innovations set sail.

Featured Posts

Contact