Hiring For DevSecOps role

2 weeks ago

Mumbai City District, India Bennett Coleman Company Limited. Full time ₹ 12,00,000 - ₹ 36,00,000 per year

Role & responsibilities

AWS + DevSecOps Roles and Responsibilities (Including Bitbucket)

AWS Roles and Responsibilities:

  • Design and enforce least privilege access policies.
  • Conduct regular audits of IAM roles, groups, and policies.
  • Configure and manage federated identity with external IdPs (e.g., Okta, Azure AD).

Vulnerability Assessment and Penetration Testing (VAPT) and Hardening:

  • Perform regular vulnerability assessments on AWS resources using tools like AWS Inspector, Nessus, or Qualys.
  • Apply AWS best practices to harden services such as EC2, RDS, and S3.
  • Implement encryption in transit and at rest using AWS KMS and SSL/TLS.
  • AWS Cognito and Database Management:
  • Manage authentication and authorization workflows with AWS Cognito.
  • Secure databases (RDS, DynamoDB) with:
  • Fine-grained IAM controls for access.

Bitbucket Roles and Responsibilities:

  • Manage secure repositories in Bitbucket by enforcing:
  • Access controls based on roles (Admin, Developer, Read-Only).
  • Branch protection rules to restrict direct commits and enforce pull request (PR) reviews.
  • Encrypt sensitive data like credentials using Bitbucket Pipelines environment variables.

CI/CD Pipeline Integration:

  • Set up secure CI/CD pipelines in Bitbucket Pipelines:
  • Integrate with tools like SonarQube or Check Marx for code quality and security scanning.
  • Use pre-commit hooks and PR checks for code quality and security validation.

CI/CD and Code Security Responsibilities:

  • Integrate Bitbucket Pipelines with AWS services for secure application deployment
  • Static Application Security Testing (SAST) with SonarQube.
  • Dependency scanning with tools like OWASP Dependency-Check.
  • Container security scanning for Docker images.

Code Scanning and Security:

  • Use Bitbucket Code Insights to run security scans and display results directly in PRs.
  • Monitor Bitbucket repositories for exposed credentials or sensitive data.
  • Automate the review process with Bitbucket integrations like Checkov for IaC scanning.

Application Security Responsibilities:

  • Conduct SAST during development to identify vulnerabilities early.
  • Perform DAST in staging or production environments to simulate real-world attacks.
  • Use tools like Burp Suite, AppScan, or OWASP ZAP to enhance app security.

Infrastructure Security Responsibilities:

AWS and GCP Infrastructure Security:

  • Harden cloud environments using security services:
  • AWS: Security Hub, GuardDuty, CloudTrail, AWS Config.
  • GCP: Security Command Center, IAM, and Cloud Audit Logs
  • Use IaC scanning tools like Checkov, Terrascan, or AWS Config Rules.

Compliance and Governance:

  • Ensure adherence to compliance standards like GDPR, HIPAA, and PCI DSS.
  • Generate and maintain audit trails using AWS CloudTrail and Bitbucket Activity Logs.

Interested candidates can share their resumes on

  • DevSecOps Manager

    6 days ago

    Mumbai, Maharashtra, India Security Lit Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    DevSecOps Manager (CM)Job DescriptionWe are looking for a skilled professional to join our Information Security Team as a DevSecOps Manager. The DevSecOps Manager leads a DevSecOps engineering function that focuses on the security of platforms and products through the design, build and operational lifecycle.Roles & Responsibilities· Responsible for...

  • DevSecOps Engineer

    2 weeks ago

    Mumbai, Maharashtra, India Jinrai Technologies Private Limited Full time ₹ 24,00,000 - ₹ 28,80,000 per year

    Job Title: DevSecOps EngineerExperience: 6+ YearsLocation: MumbaiBudget: Up to ₹24 LPAJob SummaryWe are looking for an experienced DevSecOps Engineer to join our team in Mumbai. The ideal candidate will have a strong background in DevSecOps practices, cloud security, and containerized application security. You will be responsible for integrating security...

  • Senior DevSecOps Engineer

    2 weeks ago

    bangalore district, India Gloify Full time

    Job Title: Senior DevSecOps Engineer Location: Bengaluru, India (onsite/hybrid) Experience: 7+ years Responsibilities Embed security into the full software development lifecycle, from design through deployment and operations (the “Sec” in DevSecOps). Define, build and maintain CI/CD pipelines with integrated security controls: SAST, DAST, SCA, secrets...

  • AVP || Internal Audit

    2 days ago

    gurgaon district, India NAB Full time

    Key Responsibilities Evaluate cloud configurations and governance across AWS, Azure, and GCP. Assess minimum security baselines and control effectiveness in multi-cloud environments. Support audit walkthroughs and evidence validation for serverless functions (AWS Lambda, Azure Functions), container platforms (EKS/AKS), and services like S3, RDS. Interpret...

  • Azure DevSecOps Engineer

    2 weeks ago

    Mumbai, India Datamatics Technologies Full time

    Job description We are seeking a highly experienced Azure DevSecOps engineer.  Location: Remote  Work Timings: UK Time Zone  Availiblity : 3o to 60 Days Maximum  Experience: 8+ Years in Azure DevOps Proficiency: Azure DevOps   Note : Please read the JD carefully and apply accordingly. KEY RESPONSIBILITIES Cloud Platform deployments: •    Design and...

  • DevSecOps Engineer

    4 weeks ago

    Mumbai, India Dogma Group Full time

    We are seeking a versatile and security-focused DevSecOps & Cloud Engineer to join our team. This hybrid role combines responsibilities across cloud infrastructure, security operations, and identity management. The ideal candidate will have deep expertise in Microsoft Intune , Active Directory , Azure , and Entra ID , along with strong experience in cloud...

  • DevSecOps Engineer

    2 weeks ago

    Mumbai, Maharashtra, India Fynd Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    Fynd is India's largest omnichannel platform and a multi-platform tech company specialising in retail technology and products in AI, ML, big data, image editing, and the learning space. It provides a unified platform for businesses to seamlessly manage online and offline sales, store operations, inventory, and customer engagement. Serving over 2,300 brands,...

  • Azure DevSecOps Engineer

    2 weeks ago

    Mumbai, Maharashtra, India Datamatics Global Services Ltd Full time ₹ 9,00,000 - ₹ 12,00,000 per year

    Job description We are seeking a highly experienced Azure DevSecOps engineer.Location: RemoteWork Timings: UK Time ZoneAvailiblity : 3o to 60 Days MaximumExperience: 8+ Years in Azure DevOpsProficiency: Azure DevOps Note : Please read the JD carefully and apply accordingly. KEY RESPONSIBILITIES Cloud Platform deployments: Design and implement Azure...

  • DevSecOps Engineer

    3 weeks ago

    Mumbai, India Fynd Full time

    Job Description Role Overview: - As a DevSecOps Engineer at Fynd, you will be responsible for embedding security into the DevOps lifecycle, automating security processes, and ensuring compliance across our cloud-based infrastructure. You will collaborate with cross-functional teams to implement security best practices and proactively mitigate security risks....

  • Recruiter (Bulk Hiring)

    1 week ago

    Mumbai City District, India Manek Consulting Full time ₹ 2,00,000 - ₹ 6,00,000 per year

    Manage end-to-end bulk hiring for fresher & entry-level roles across India.Source candidates via portals, references & vendor networksScreen, shortlist, and schedule interviews as per hiring needsMaintain recruitment MIS, daily hiring trackers Required Candidate profileExperience in Mass/Bulk Hiring is must.Essential Skills:-Bulk/Volume Hiring,Pan India...