Devsecops architect /lead

JD:-

Job Summary:

DevSecOps Architect

Key Responsibilities:

Architecture & Strategy

• Define and drive the DevSecOps architecture roadmap aligned with business and security goals.
• Lead the integration of security into CI/CD pipelines and cloud-native environments.
• Establish governance for secure coding, deployment, and operations.

Automation & CI/CD

• Architect and implement automated CI/CD pipelines using Jenkins, GitLab CI, GitHub Actions, Azure DevOps, etc.
• Embed security tools (SAST, DAST, IAST) into build and deployment workflows.
• Champion Infrastructure as Code (IaC) using Terraform, CloudFormation, or Pulumi.

Cloud Platforms

• Design secure cloud architectures across

  AWS, Azure, and GCP

  .
• Implement cloud-native security controls, identity management, and compliance frameworks.

Containerization & Orchestration

• Architect secure containerized environments using

  Docker

  and

  Kubernetes

  .
• Define policies for image scanning, runtime protection, and cluster hardening.

Security & Monitoring

• Integrate and manage security tools for static and dynamic analysis.
• Implement

  SIEM

  solutions and continuous monitoring for threat detection and incident response.
• Conduct architecture reviews and threat modelling.

Collaboration & Culture

• Promote

  secure coding practices

  and DevSecOps principles across teams.
• Advocate for

  Zero Trust architecture

  and continuous security validation.
• Mentor teams on security automation and best practices.

New Proposal response & Solutioning

• Collaborate with sales and bid teams during RFP/RFI stages to define DevSecOps strategies and secure CI/CD solutions.
• Prepare technical proposals, solution blueprints, and effort estimates for client engagements.
• Conduct client workshops, assessments and presentations to articulate DevSecOps value propositions.
• Designing the Solutioning and Solution implementation

Required Skills & Qualifications:

• 12+ years of experience in DevOps/DevSecOps, with at least 3+years in an architect role.
• Strong scripting skills (Python, Bash, PowerShell).
• Expertise in CI/CD tools and IaC frameworks.
• Hands-on experience with AWS, Azure, and GCP.
• Deep understanding of container security and orchestration.
• Familiarity with security tools (e.g., SonarQube, OWASP ZAP, Checkmarx, Fortify).
• Experience with SIEM tools (Splunk, ELK, Sentinel).
• Knowledge of SSDLC, Zero Trust, and compliance standards.

Preferred Certifications:

• DevSecOps / Cloud Security: AWS Certified Security, Azure Security Engineer, Certified Kubernetes Security Specialist (CKS).
• Architecture: TOGAF, AWS/Azure Solutions Architect.
• Security: CISSP, CCSP.