DevSecOps Engineer

Job Description

• Hands-on experience with virtualization technologies (KVM, VMware, Hyper-V).
• Strong understanding of container technologies (Docker, Kubernetes).
• Knowledge of Cloud Native Computing Foundation (CNCF) tools (Prometheus, Helm, ArgoCD, Istio, Gatekeeper, Crossplane).
• Experience with infrastructure monitoring and observability tools.
• Strong ability to troubleshoot complex issues across system resources and application stacks.
• Experience with CI/CD pipelines and DevOps tools (GitLab, Jenkins, BitBucket, ArgoCD).
• Experience with disaster recovery planning, system backup, and restore processes.
• Knowledge of RPM-based software packaging and deployment.

Security & Compliance:
• Experience implementing security controls within CI/CD pipelines and cloud native architectures.
• Hands-on experience with security assessments, vulnerability scanning, and system hardening.
• Familiarity with enterprise security tools (HashiCorp Vault, ElasticSearch Enterprise, Tenable, HP Fortify, Sonatype Nexus IQ, AWS security services).
• Strong understanding of network infrastructure, including firewalls, subnets, routing, and access controls.
• Experience performing security assessments in government or highly regulated environments.

Bonus Experience (Added Advantage):
• Security certifications such as CREST, CISSP, CISM, or relevant cloud security credentials.
• Experience working in an organization that successfully implemented DevSecOps transformation.
• Experience with security and compliance frameworks (ISO 27001, NIST, CIS benchmarks).
• Hands-on experience with API security, secrets management, and zero-trust architectures.
• Knowledge of service mesh security implementations (Istio, Linkerd).