Sr. AEM DevSecOps Engineer

Job Title: Sr. AEM DevSecOps Engineer

Location: Remote (India)

Headquarters: Dallas

Development Center: Ahmedabad

Role Summary

Hands-on Senior Engineer responsible for platform security, compliance, audit remediation, and secure DevOps practices for the Adobe Experience Manager (AEM) Cloud Service platform. The role works closely with internal security, compliance, and engineering teams to maintain a secure, reliable, and compliant platform while supporting project teams with security best practices.

Experience - 5 years

Key Responsibilities

Platform Security

• Remediate platform-level security vulnerabilities identified through security assessments, vulnerability scanning tools (Snyk, SAST/DAST), and CVE reports.
• Triage, prioritize, and resolve security issues within defined SLAs.
• Implement security improvements across AEM Dispatcher, Cloudflare CDN, Adobe Cloud Manager, and application configurations.
• Develop long-term solutions for recurring security issues, including CSP, secrets management, and code security.
• Conduct project-level security reviews and promote secure-by-design development practices.

Audit & Compliance

• Address security and compliance audit findings and ensure timely remediation.
• Manage identity and access management (IAM), including user provisioning, deprovisioning, and access reviews across AEM environments.
• Maintain centralized audit logs, retention policies, and periodic audit reviews.
• Support internal and external audits by collecting evidence and ensuring compliance with security standards.
• Establish processes and tools to support recurring platform audits.

Secure DevOps

• Implement and maintain security controls within CI/CD pipelines, including SAST, DAST, and dependency scanning.
• Manage Adobe Cloud Manager pipelines, environment access, and secure deployment practices.
• Implement secure secrets and credential management, including rotation and least-privilege access.
• Support source code management, CI/CD pipeline governance, and repository migration using GitHub

Monitoring & Collaboration

• Monitor security vulnerabilities, audit logs, and compliance status.
• Support security incident response, investigation, and root cause analysis.
• Collaborate with internal security, compliance, engineering, and infrastructure teams to maintain platform security.
• Work with external technology partners and vendors to implement security best practices and platform improvements.

Required Skills

• 5+ years of experience in DevSecOps, Security Engineering, or security-focused DevOps.
• 2+ years of hands-on experience with Adobe Experience Manager (AEM) Cloud Service.
• Strong experience with CI/CD tools such as GitHub Actions, Jenkins, or similar.
• Hands-on experience with Snyk, SAST/DAST tools, dependency scanning, and Content Security Policy (CSP).
• Experience configuring and managing Cloudflare CDN, WAF, and edge security.
• Knowledge of Identity and Access Management (IAM), including provisioning, deprovisioning, and access certification.
• Experience supporting security audits and compliance programs.
• Proficiency in scripting languages such as Python, Bash, Java, or JavaScript.
• Strong communication and collaboration skills with the ability to work effectively across cross-functional teams.

Why Solvative?

• Top-of-the-line Apple laptops for increased mobility and better productivity.
• Medical insurance for all permanent employees.
• The opportunity of working with an organization that believes in investing in employees’ growth.
• An informal work environment that enables you to have fun while being productive.
• Lots and lots of fun activities: we take over one of the nearby restaurants every last Friday of the month, tickets to all Marvel movies for the entire team, company picnics, and more!