Infosys Consulting is looking for a DevSecOps Engineer to embed security practices into every stage of the software development lifecycle. You will work across development, operations, and security teams to ensure applications and infrastructure are secure, compliant, and resilient while maintaining deployment speed and efficiency.

What You'll Do

Design, implement, and maintain secure CI/CD pipelines with automated security checks.
Integrate application security testing tools (SAST, DAST, SCA) into development workflows and enforce secure coding standards.
Automate compliance checks and code analysis in CI/CD pipelines.
Collaborate with software developers and IT staff to oversee code releases and deployments.
Design and implement scalable cloud architecture using platforms such as AWS, Google Cloud Platform, or Azure.
Manage containerization technologies such as Docker and orchestration tools like Kubernetes.
Utilize Infrastructure as Code (IaC) tools like Ansible for automated provisioning of infrastructure.
Ensure system reliability through monitoring, logging, and alerting using tools like Jenkins and Git.
Monitor and respond to security incidents, leveraging SIEM tools and observability platforms.
Ensure compliance with industry standards and regulations (ISO 27001, NIST, GDPR, HIPAA, PCI DSS).
Provide training and guidance to teams on DevSecOps best practices.

What We're Looking For

At least 4 years of proven experience in DevOps, Security Engineering, or Cloud Security.
Strong knowledge of CI/CD tools (Jenkins, GitLab CI/CD, Azure DevOps).
Hands-on experience with cloud platforms (AWS, Azure, GCP) and securing Docker and Kubernetes workloads.
Proficiency in languages like Python or Java to automate security tasks.
Familiarity with Terraform, Ansible, or CloudFormation, with emphasis on secure configurations.
Experience with security automation tools, vulnerability management, and working with GitOps tools (Flux, ArgoCD).
CKAD, CKA certification or AWS Certification (Solutions Architect, DevOps Engineer, Networking, or Security).
Security Engineering or Cyber Engineering Certification, including Security+.
Proficiency in scripting languages and experience with virtualization technologies including VMware and OpenStack.
Knowledge of NoSQL databases as well as SQL-based systems (MySQL, PostgreSQL, Oracle, Microsoft SQL Server).
Understanding of DevOps methodologies including CI/CD practices and experience with configuration management tools.
Ability to obtain a security clearance.