Lead DevSecOps Engineer

Corporate Title : Senior Associate Level

Functional Title : Lead DevSecOps Engineer

Job Type: Contractual/Freelacing

We are seeking an experienced and highly skilled DevSecOps Engineer to join our dynamic team. As a DevSecOps Engineer, you will play a crucial role in ensuring the security, reliability, and efficiency of our software development and deployment processes.

Role description :

- Contribute to Infrastructure as a Code

- Support and maintain Kubernetes environments

- Design, implement, and maintain the infrastructure and deployment pipelines to support the development and deployment of our applications.

- Collaborate with software engineers, system administrators, and other team members to identify and implement efficient and reliable solutions.

- Automate processes and tasks to improve efficiency and scalability.

- Provide technical support and assistance to the development team.

- Monitor, analyze, and optimize system performance, ensuring high availability, scalability, and security.

- Timely respond to incidents.

- Maintain and enhance the security of our infrastructure, applications, and systems, ensuring compliance with industry best practices and regulatory requirements.

- Provide On-call Weekly/Weekend off-hour L3-4 support on a rotational schedule with other team members

- Develop and maintain system documentation

- Stay up-to-date with the latest trends, technologies, and best practices in DevSecOps and cybersecurity.

Job requirements :

- Bachelor's degree in Computer Science, Engineering, Information Security, or a related field.

- 6+ years of hands-on experience in DevSecOps or a similar role.

- Strong knowledge of cloud platforms such as Azure and GCP and their security features.

- Strong knowledge of SDLC, CI/CD pipelines, and infrastructure automation.

- Strong knowledge of CI/CD tools such as Azure DevOps or an equivalent.

- Confident knowledge of containerization technologies and strong hands-on experience with Docker and Kubernetes.

- Confident knowledge of IaC approach, testing techniques and strong hands-on experience with infrastructure management tools such as Terraform.

- Good understanding of modern monitoring tools and practices (SLA/SLO/SLI, Distributed Tracing, etc.)

- Good understanding of Configuration Management and hands-on experience with CM tools such as Ansible.

- Good understanding of version control systems like Git.

- Strong understanding of networking concepts, including the OSI model (protocols, etc.), Hub/Spoke, Landing Zones architectures, as well as security measures such as firewalls, NAT, and VPN, etc.

- Expertise in system administration for both Linux and Windows environments.

- Ability to comprehend the objectives of a task, propose and advocate for solutions, and successfully implement them.

- Familiarity with security tools and technologies for vulnerability assessment, threat detection, and risk management.

- Hands-on experience in designing robust, resilient and cost-effective solutions that meet organizational needs.

- Ability to mentor and guide team members, fostering a culture of continuous learning and professional development.

- Strong knowledge of at least one of programming languages such as Python, Go

- Good understanding of Software Engineering, including Object Oriented Programming, Unit Testing, Design Patterns, Scalability & Performance Optimization, etc.

- Good understanding of Service Mesh solutions such as Istio or Linkerd.

- Hands-on experience with Terragrunt and Terraform providers development.

- Professional certifications in DevSecOps and/or information security (e.g., Certified DevSecOps Professional, CISSP, Certified Ethical Hacker) are a plus.

Leadership competencies :

- Champion Inclusion - Embrace individual difference and create an environment of support, belonging and trust.

- Communicate Clearly - Listen to understand. Ask questions for clarity and deliver messages with purpose.

- Cultivate Relationships show care and compassion for others and authentically build networks across functions.

- Instill Ownership Ensure accountability, manage execution, and mitigate risk to deliver results.

- Inspire Growth Develop yourself and others through coaching, feedback, and mentorship to meet carer goals.

- Propel Change Think critically, respectfully challenge, and create innovative ways to drive growth.