Senior DevSecOps Engineer

Key Responsibilities

CI/CD & Pipeline Engineering

• Design, build, and maintain end-to-end CI/CD pipelines for application and platform deployments
• Automate build, test, security scanning, packaging, and deployment workflows across multiple environments
• Develop and maintain reusable pipeline templates and automation frameworks to standardize delivery practices
• Manage artifacts, binaries, and dependencies using JFrog Artifactory and Sonatype Nexus Repository
• Embed security and quality controls into pipelines: SAST (Fortify), code quality and secrets scanning (SonarQube), and SCA for OSS libraries (Sonatype Nexus)
• Automate security validations, policy enforcement, guardrails, and audit evidence collection across pipelines and cloud environments

Cloud & Platform Engineering (AWS)

• Build and operate cloud-native CI/CD pipelines and automation workflows on AWS
• Design secure, scalable, and resilient cloud architectures aligned with operational and compliance requirements
• Automate provisioning, configuration, scaling, and lifecycle management

Automation and AI

• Apply Infrastructure / Operations automation principles (e.g. configuration-driven automation, version control, code reviews).
• Drive adoption of AI across teams by identifying practical use cases and integrating AI capabilities into everyday workflows

Requirements:

• 7+ years in DevSecOps and automation engineering
• Hands-on experience with: Bitbucket, Jenkins, Ansible, Octopus, JFrog, Sonatype Nexus, SonarQube, Fortify, AWS CodeCommit, AWS CodePipeline
• Experience supporting MAS, Group Audit, Risk & Compliance, and third-party audit engagements
• Proficiency in Python and Unix shell scripting
• Experience in AWS cloud environments
• Familiarity with Kubernetes and containerised microservices
• Experience with Elasticsearch and Kibana dashboards is a plus