Responsibilities
- Lead and mentor a team of DevSecOps engineers, overseeing code reviews, backlog management, prioritization, and adherence to engineering standards.
- Collaborate with delivery leadership, product owners, security teams, and infrastructure groups to interpret requirements, align technical roadmaps, and manage stakeholder expectations.
- Lead incident response and post-incident reviews, conduct root cause analysis, manage risks, and implement proactive system improvements.
- Design, deploy, and maintain cloud infrastructure on AWS including EKS, RDS, EC2, IAM, VPC, CloudFormation, and EBS; contribute to expanding workloads on Azure with AKS, IAM/Entra ID, and networking components.
- Manage large-scale Kubernetes operations across EKS and AKS, covering deployments, ingress configurations, Helm usage, performance tuning, and cost and capacity planning.
- Own the full lifecycle of the DevSecOps toolchain, including Artifactory, SonarQube, Fortify, Confluence, GitGuardian, and Sonatype, covering deployment, upgrades, security hardening, monitoring, and disaster recovery.
- Operate self-hosted agents on AWS to support Azure DevOps Pipelines; expand CI/CD capabilities using GitHub Actions and GitHub Advanced Security, while promoting responsible use of GitHub Copilot with defined guardrails.
- Embed security into CI/CD pipelines using SAST, SCA, and secret scanning tools; manage TLS certificates and secure handling of secrets.
- Standardize monitoring and observability using Datadog for dashboards, alerts, distributed tracing, and log management; phase out legacy Prometheus and Grafana instances.
- Design and implement secure access solutions using LDAP, SAML, SCIM, Azure AD (Entra ID), and single sign-on protocols.
- Develop and execute backup and disaster recovery plans for critical applications to ensure resilience and compliance.
Work Arrangement
Remote (Worldwide)
Team
Team of DevSecOps engineers
