Full Stack DevSecOps Engineer

The role of Full Stack DevSecOps Engineer with strong network security expertise to design, build, secure, and manage modern cloud-native applications and infrastructure. This role blends full stack application development, DevSecOps engineering, and advanced network security principles to build secure, scalable, and reliable systems to maintain and improve security compliance protecting our organization's network infrastructure from Cyber Threats, vulnerabilities, and unauthorized access. This focuses on ensuring that security technologies are optimized for detecting, preventing, and responding to security threats in real-time. This also involves collaboration with Network engineers, IT, and security operations to deploy and support enterprise-level Cyber security platforms and solutions.

Skills & Qualifications:

• Technical Skills :
• A relevant Bachelor's or Master's Degree in engineering/computer applications.
• 5+ years of experience in UI (Angular JS, React, Backstage) and API development (Python Flask or FastAPI or Java)
• 4+ years of Experience in development of CI-CD pipelines
• 4+ years of experience with GCP or Azure or AWS cloud and configuring infrastructure using infrastructure-as-a-code libraries like Terraform, Ansible, etc.
• Strong scripting skills in Python, PowerShell, or Bash for automation and tool integration.
• Experience in Observability tools (Dynatrace, Splunk, Prometheus Grafana).

• Understanding of the SIEM tools (e.g., Splunk, QRadar, SecOps or equivalent)
  Familiarity with ITSM processes, Agile practices, ServiceNow, JIRA.

• Experience :

• Bachelor's or Master's degree in Computer Science, Information Security, or related field, or equivalent practical experience.
• Minimum 5-10 years of experience in full stack and DevSecOps Engineering.
• Good understanding of the network security platforms and tools in a large, complex environment that includes security protocols, routing, switching, load balancer and firewalls.
• Experience with Network security, analysis, and response, including knowledge of common attack vectors.
• Certifications :
• Cloud Certification in GCP, Azure or AWS.

• Cybersecurity certificates (preferred)

• Design / Develop Self-Service portals (UI), security central websites using Angular JS, React JS, Backstage and backed APIs using Java or Python

• Develop CI-CD pipelines on Tekton and deploy on GCP.
• Work with product managers, SMEs, anchors to create prototypes, perform PoCs.
• Collaborate with Platform vendors to understand their APIs, integration patterns to automate deployments / manual tasks.
• Automate testing using Hopscotch, Postman.
• Work with various infrastructure and application support teams to provide technical direction and address security issues.
• Design, test, and implement security policies for critical Enterprise Infrastructure.
• Automate repeatable tasks and workflows to improve process efficiency by developing APIs/scripts and deploying to the cloud.
• Implement SRE for Platform services, capabilities/features to achieve availability and reliability.
• Implement zero-trust networking and network segmentation in cloud environments.
• Enforce secure protocols, firewall rules, VPN configurations, and reverse proxy setups.
• Perform threat modelling, vulnerability scanning, and secure code reviews.
• Work closely with the Security team to maintain compliance with standards such as NIST, ISO 27001, or SOC 2.