AWS DevSecOps Engineer

Role: AWS DevSecOps Engineer Location: Noida, CLT Experience: 6years to 10 Years Position Summary: This role demands strong expertise in Git migration strategies, IaC (Terraform & CloudFormation), in-depth Python automation and Javascript, and AWS-native services, along with the ability to design, implement, and optimize enterprise DevSecOps workflows Responsibilities: - Work on end-to-end migration of large-scale repositories from AWS CodeCommit and Gitlab to GitHub Enterprise, ensuring history preservation, access control mapping, and zero data loss. - Establish and enforce enterprise Git standards, including branching strategies, commit policies, rebasing workflows, release/version management, and tagging best practices. - Collaborate with stakeholders to define migration playbooks and ensure smooth adoption across development teams. - Redesign and integrate AWS CodePipeline workflows to work seamlessly with GitHub repositories and GitHub Actions. - Implement hybrid runner strategies (GitHub-hosted & AWS self-hosted) for performance and scalability. - Define multi-stage approval workflows, security scans, and policy enforcement within pipelines. - Develop and manage infrastructure using Terraform and AWS CloudFormation, following modular, reusable, and secure coding practices. - Automate CI/CD and DevSecOps processes with Python (in-depth) for API integrations, AWS SDKs (boto3), and orchestration scripts. - Build automation scripts in Shell for migration tooling, pipeline triggers, and system integrations. - Implement monitoring and observability with CloudWatch/ New Relic for pipelines, GitHub Actions, and migration jobs. - Ensure compliance with enterprise DevSecOps frameworks, including secure coding, pipeline hardening, and access control enforcement. Qualifications and Experience: - Bachelor’s degree in software engineering, Computer Science, Computer Engineering, or related Engineering discipline; master’s degree or higher from IIT/IISc or other premier institutes preferred. - 5+ years of experience in technical architecture including 3+ years of experience in AWS and GitHub Enterprise. Skills and Abilities Required: - Expertise in scripting/development using Python & JavaScript, AWS SDKs (boto3), GitHub SDK, REST APIs while following development best practices. - Expertise in Terraform & CloudFormation, Jinja for enterprise IaC. - Experience with AWS Services like STS, IAM, Lambda, S3, CloudWatch, CodePipeline, CodeBuild, Secrets Manager, EC2, ECS, Docker, DynamoDB, RDS, Cloudfront , Codeartifact, Cognito, SAM etc. - Experience with GitHub Actions, self-hosted runners on AWS and Github hosted runners - Working knowledge of MySql and Postgres Databases - Cross-account roles, least-privilege policies, secure automation using IAM, OIDC,SCIM. - CI/CD security scanning, compliance enforcement, observability - Secure pipelines with approvals, static analysis (SonarQube, Sonatype), artifact validation - Experience in GitHub Enterprise administration: branch protections, security rules, workflow policies and configuration. - Experience GitHub Apps, OAuth Apps, Github Actions for Automation and access management on GitHub . - Knowledge of building and deploying codebase in Nodejs, python, Golang, React Native on AWS Serveless Infrastructure - Good Communication and documentation skills. - Can-do positive attitude, always looking to accelerate development. - Driven; commit to high standards of performance and demonstrate personal ownership for getting the job done. - Innovative and entrepreneurial attitude; stays up to speed on all the latest technologies and industry trends; healthy curiosity to evaluate, understand and utilize new technologies. Good to have: - Terraform Certification - AWS Professional Certification - Development experience in python - Familiarity with ELK, ECS, Jenkins, Bitrise, Jira