Devsecops Lead Engineer
1 week ago
Summary:
The role of an Application Security Engineer is integral to integrating security practices within our DevOps methodology, effectively bridging any gaps between IT and security while ensuring the swift and safe release of code. This role involves implementing security measures throughout the DevOps pipeline to protect applications and APIs, ensuring compliance with necessary security standards.
Key Responsibilities:
- Incorporate security measures into every stage of the DevOps pipeline to protect applications and APIs.
- Implement and maintain controls within the Continuous Integration/Continuous Deployment (CI/CD) pipeline to meet necessary security standards.
- Gain experience with SAST (Static Application Security Testing), SCA (Software Composition Analysis), DAST (Dynamic Application Security Testing), IaC (Infrastructure as Code) security, Container security, integrating security in IDEs (Integrated Development Environments), and API security.
- Regular usage of automated tools for routine security checks.
- Facilitate collaboration among development, operations, and security teams.
- Develop policies that align with regulations, alongside conducting comprehensive assessments of application/API security.
- Educate teams about secure application/API usage, keeping up-to-date with cybersecurity trends, ensuring adherence to secure design principles across all Software Development Life Cycle (SDLC) phases, managing incident response protocols, and providing training on secure coding best practices.
- Utilize automation tools to identify potential vulnerabilities before they escalate into threats.
- Evaluate third-party services for potential weaknesses in their security posture.
- Proficiency in scripting languages such as Python and familiarity with common programming languages.
- Empower developers with hands-on practices in secure coding.
Additional duties include ensuring that vulnerabilities are remediated before code moves to production and providing guidance on the remediation process for application/API security vulnerabilities. This role also requires collaboration with Information Security Officers (ISOs), DevOps teams, Application Development teams, Vendor Partners, and Cyber Engineering teams. The position ensures compliance with industry-specific regulations such as GDPR or HIPAA.
EXPERIENCE AND EDUCATIONAL REQUIREMENTS:
- Bachelor’s degree in IT, Cybersecurity, or a related field, or equivalent work experience.
- Security certifications such as CISSP (Certified Information Systems Security Professional), OSCP (Offensive Security Certified Professional), or CEH (Certified Ethical Hacker) would be advantageous.
- Minimum 5 years of experience in a similar role within a large, geographically dispersed environment.
- Strong understanding of information security principles.
- Excellent communication skills: able to explain complex concepts clearly to both technical and non-technical stakeholders.
- Understanding of industry-standard regulations, risk management, and security controls frameworks and standards (e.g., ISO, PCI, NIST, GAPP, HIPAA, GDPR, CIS, SANS, OWASP Top 10, MITRE ATT&CK, etc.).
Skills Desired:
- Understanding of risk assessment methodologies.
- Experience with various vulnerability assessment tools (e.g., Checkmarx, Microsoft Defender).
- Strong interpersonal skills: ability to work collaboratively within a team.
- Reporting and metrics expertise with platforms such as ServiceNow (SecOps), PowerBI, etc.
-
Sr Lead DevSecOps
12 hours ago
Pune, Maharashtra, India northern trust corp ltd - london Full time ₹ 20,00,000 - ₹ 25,00,000 per yearJob Description About Northern Trust: Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative financial services and guidance to the worlds most successful individuals, families, and institutions by remaining true to...
-
Sr Lead DevSecOps
2 weeks ago
Pune, Maharashtra, India Northern Trust Full time ₹ 12,00,000 - ₹ 36,00,000 per yearAbout Northern TrustNorthern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to our enduring...
-
DevSecOps Engineer
2 weeks ago
Mumbai, Maharashtra, India, Maharashtra Dogma Group Full timeWe are seeking a versatile and security-focused DevSecOps & Cloud Engineer to join our team. This hybrid role combines responsibilities across cloud infrastructure, security operations, and identity management. The ideal candidate will have deep expertise in Microsoft Intune, Active Directory, Azure, and Entra ID, along with strong experience in cloud...
-
Senior DevSecOps Engineer
2 weeks ago
Thane, Maharashtra, India, Maharashtra WTW Full timeWork location: Thane or GurugramShift: 1.30 P.M. to 10.30 P.M. (hybrid)Summary:WTW is seeking an experienced Senior DevSecOps Engineer to join our team. We are looking for the very best talent, and if you are passionate about what you do and welcome new challenges, we want to meet you.As a full-time member of our DevSecOps team, you will be responsible for...
-
Cloud DevSecOps Engineer
3 weeks ago
Pune, Maharashtra, India, Maharashtra Rockwell Automation Full timeRockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale,...
-
Senior Cloud DevSecOps Engineer
1 week ago
Pune, Maharashtra, India Flynaut Full time ₹ 12,00,000 - ₹ 36,00,000 per yearJob descriptionWe are seeking a highly skilled and forward-thinking Senior Cloud DevSecOps Engineer to join our client's dynamic team. This role demands deep technical expertise across cloud platforms, security-first DevOps practices, and modern infrastructure tooling. You will work closely with development, security, and operations teams to ensure the...
-
Senior Cloud DevSecOps Engineer
6 days ago
Pune, Maharashtra, India Flynaut Full time ₹ 8,00,000 - ₹ 20,00,000 per yearJob DescriptionWe are seeking a highly skilled and forward-thinking Senior Cloud DevSecOps Engineer to join our client's dynamic team. This role demands deep technical expertise across cloud platforms, security-first DevOps practices, and modern infrastructure tooling. You will work closely with development, security, and operations teams to ensure the...
-
Senior Cloud DevSecOps Engineer
1 week ago
Pune, Maharashtra, India Flynaut Infotech Pvt. Ltd. Full time ₹ 12,00,000 - ₹ 36,00,000 per yearAbout Flynaut LLCFlynaut is a global leader in digital transformation, partnering with startups, SMEs, and large enterprises across various industries since 2004. Our team of passionate professionals transforms visionary ideas into groundbreaking realities by delivering cutting-edge mobile apps, robust web platforms, and comprehensive IT solutions. With...
-
Devsecops Manager
2 weeks ago
Pune, Maharashtra, India, Maharashtra ACL Digital Full timeA DevSecOps Manager in Pune typically oversees the integration of security into the entire software development lifecycle (SDLC), leading teams to automate security controls, manage CI/CD pipelines, and implement security frameworks.About the RoleKey responsibilities include assessing security gaps, collaborating with development and cybersecurity teams,...
-
Senior DevSecOps Engineer
2 days ago
Pune, Maharashtra, India Roche Full time ₹ 12,00,000 - ₹ 36,00,000 per yearAt Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections, where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure...
