5 Devsecops Engineer Jobs

DevSecOps Engineer_Full-Time_Bangalore, Pune Job title: DevSecOps Engineer Location: Bangalore, Pune Job Type: Full-Time Experience: 7-9 years Job Description: DevSecOps Engineering with 7 plus years of experience, he/she will use their experience and knowledge to design, implement, and support complex DevSecOps CI/CD pipelines for multiple application technical stacks for Public and Hybrid-Cloud-driven digital transformations. Responsibilities: Design, implement, and support DevSecOps solutions for Public and Hybrid-Cloud-driven digital transformations. Develop new and maintain existing complex CI/CD DevSecOps pipelines solutions. Provide extensive hands-on support for the administration, configuration, and overall support of the platform. Research and develop potential system solutions, including evaluating product and/or vendor products and services when needed. Work independently on medium-scale and complexity projects or problem-solving exercises. Work across the organization with developers, engineers, and architects to develop solutions. Provide rotating on-call support of production infrastructure and applications and business hours support for development systems. Works collaboratively with all IT functions. Minimum Requirements & Experience: Experience writing script languages in Helm, Groovy, Python, PowerShell, MS Build and Terraform. Extensive hands-on to integrating Maven, Gradle, package managers like NPM and JSPM, build tools to application builds and troubleshooting build issues. Prior experience with various technical container stacks Apache, Jboss, node module, tomcat, Spring boot, Docker, and RedHat container tools like Skopeo, buildah, and Podman. Experience administering and working with Azure DevOps, GitHub/Bit Bucket/GitLab, Jenkins, SonarQube, JFROG Artifactory/Nexus and SecOps tools like Synk is required. Strong knowledge of Container orchestration Platform like Kubernetes, OpenShift, AKS Knowledge of Dynatrace, Prometheus, Grafana, and Kiali is a plus. Experience working in the Ansible Automation platform would be a plus. Ability to work in a fast-paced environment, frequently collaborating with multiple teams for solutions support debugging, and troubleshooting. For Devsecops, proficiency with programming languages such as Java, Node.js, or Python is mandatory for DevOps Engineer is not there. Please source accordingly. ----------------------- If you are interested, please share your updated resume along with the following details for the next steps: # Your full name ( First : Middle : Last ) ( All expanded ): # Present Employer Name & Work Location: # Permanent / Contract Employee: # Current Location: # Preferred Location (Bangalore/Pune): # Highest Qualification (University Name and Passing year): # Total experience: # Current CTC and take home: # Expected CTC and take home: # Official Notice Period: # Are you serving notice period if yes then mention LWD (Last Working Day): # Any offer you are holding (if yes please share the offer amount): # Date of Birth(DOB): # PAN Card Number (To upload your profile in client's ATS):

We are seeking a highly skilled and proactive Cybersecurity Manager to join our team at InfoServices DigiTech India. As a Cybersecurity Manager, you will be responsible for developing, implementing, and managing the organizations cybersecurity strategy to safeguard critical digital assets and ensure compliance with industry security standards. This role requires strong leadership, strategic vision, and technical expertise to mitigate cyber risks and maintain a robust security posture. Key Responsibilities . RedTeam Specialist / Penetration Testing Plan, design, and execute red/purpleteam engagements to simulate APT-style real-world attacks Conduct comprehensive penetration tests across web applications, networks (AD, APIs), cloud, mobile, and OT/ICS environments Perform full-stack post-exploitation: lateral movement, privilege escalation, persistence, and credential harvesting Execute physical and social-engineering exercises (phishing, vishing, physical intrusion) Develop and customize attack tools, shellcode, payloads, and scripts Collaborate with Blue Team to tune defensive controls and carry out purple team activities BlueTeam Analyst / Defensive Security Monitor, analyze, and respond to security alerts; perform incident detection, containment, and response Hardening systems: patching, firewalls, endpoint protections; enforce policy compliance . Tune SIEM/IDS/IPS tools based on insights from offensive testing reddit.com. Participate in incident response drills and threat-hunting exercises . Conduct post-mortems and refine detection and response plans. DevSecOps Engineer Integrate automated security checks (SAST, DAST, IaC, dependency scanning) into CI/CD pipelines Build security-as-code: policies, container security, image scanning, secrets management. Automate vulnerability scanning and remediation workflows Collaborate with development/devops to embed security into the SDLC Monitor runtime environments and respond to security issues in production. Education & Experience Bachelor's in Computer Science, Cybersecurity, or related field (Masters preferred) 3–7+ years in cybersecurity covering pentesting, red/purple teaming, blue team operations, and DevSecOps integration. Technical Skills & Tools Offensive toolkits: Metasploit, Burp Suite, Nmap, Nessus, Cobalt Strike, Empire/Sliver, GoPhish, Mimikatz, Defensive tools: SIEM/IDS/IPS platforms, endpoint security suites. Programming/Scripting: Python, PowerShell, Bash, plus C/C++, JavaScript Security frameworks: OWASP, MITRE ATT&CK, NIST, TIBER, ISO 27001, PCI, GDPR compliance. Cloud & container: AWS/Azure/GCP, Docker/K8s security OS expertise: Windows, Linux, macOS, Active Directory, network infrastructure . Certifications Offensive: OSCP, OSCE, GPEN, CRTP, CRTO, CEH, PenTest+, GXPN Defensive/Compliance: CISSP, Security+, GCIH, CySA+, CCSP Soft Skills Analytical, creative, and adversarial mindset. Excellent communicator: technical details for engineers, executive summaries for leadership . Ethical integrity, discretion, and able to handle sensitive tasks. Collaborative; experience mentoring junior staff. Passion for continuous learning and staying current with emerging threats

Must-Have: Bachelor's degree in Computer Science/Information Science or related field Deep knowledge of Qualys AWS Infrastructure and Security Knowledge Analyze PEN tests and Bug Bounty findings 2-3 years experience as a Security Analyst at a SaaS company knowledge of SAST and DAST Exposure to Application Security Architectures such as NIST, OWASP, TOGAF, SWE/SANS Nice to have : Knowledge of Security Scorecard Self motivated individual ready to contribute from day one Knowledge of CIS/STIG requirements Excellent collaboration skills in working with cross functional teams. Excellent writing and oral skills Significant attention to detail CEH, CISSP, CISM or similar certification Good knowledge of SOC1/SOC2, ITIL and ISO 27001 Well-developed analytical and problem-solving skills with a results oriented focus AWS security certification will be preferred

We are seeking an experienced DevSecOps Engineer to join our growing team in Bangalore This is a full-time, on-site role requiring presence in the office five days a week The ideal candidate will have a passion for building scalable DevSecOps solutions, with deep expertise in CI/CD, infrastructure automation, security tooling, and cloud-native development, Your tasks Designing and standardizing CI/CD pipelines and Infrastructure as Code (IaC) practices to support consistent software delivery across environments Building self-service tools and workflows for platform provisioning, access control, and automated onboarding to increase developer autonomy Automating operational tasks related to infrastructure deployment, compliance checks, and security validations Integrating security tools such as SAST, DAST, and SCA into the development lifecycle to enforce a secure-by-default culture Enabling development teams to adopt modern DevSecOps principles through coaching, support, and hands-on collaboration Collaborating closely with engineering, security, and infrastructure teams to drive alignment across technology functions Requirements Advanced experience with CI/CD pipelines using GitHub Actions, Azure DevOps, or similar platforms, including strategy design and implementation In-depth understanding of the software development lifecycle (SDLC), including branching, code quality, and deployment workflows Proficiency with containerization and orchestration tools like Docker, Kubernetes, OpenShift, or AKS Strong skills in Infrastructure as Code (IaC) using tools like Terraform and Ansible, along with scripting in Python, Bash, or PowerShell Practical experience with security automation tools such as SonarQube, OWASP ZAP, and knowledge of secure coding practices (SAST, DAST, SCA) Solid understanding of operating system security and networking, including Active Directory, DNS, and group policy configurations

We are seeking an experienced DevSecOps Engineer to join our growing team in Bangalore This is a full-time, on-site role requiring presence in the office five days a week The ideal candidate will have a passion for building scalable DevSecOps solutions, with deep expertise in CI/CD, infrastructure automation, security tooling, and cloud-native development, Your tasks Designing and standardizing CI/CD pipelines and Infrastructure as Code (IaC) practices to support consistent software delivery across environments Building self-service tools and workflows for platform provisioning, access control, and automated onboarding to increase developer autonomy Automating operational tasks related to infrastructure deployment, compliance checks, and security validations Integrating security tools such as SAST, DAST, and SCA into the development lifecycle to enforce a secure-by-default culture Enabling development teams to adopt modern DevSecOps principles through coaching, support, and hands-on collaboration Collaborating closely with engineering, security, and infrastructure teams to drive alignment across technology functions Requirements Advanced experience with CI/CD pipelines using GitHub Actions, Azure DevOps, or similar platforms, including strategy design and implementation In-depth understanding of the software development lifecycle (SDLC), including branching, code quality, and deployment workflows Proficiency with containerization and orchestration tools like Docker, Kubernetes, OpenShift, or AKS Strong skills in Infrastructure as Code (IaC) using tools like Terraform and Ansible, along with scripting in Python, Bash, or PowerShell Practical experience with security automation tools such as SonarQube, OWASP ZAP, and knowledge of secure coding practices (SAST, DAST, SCA) Solid understanding of operating system security and networking, including Active Directory, DNS, and group policy configurations Job no 250424-V7UKT Benefits For You Diverse portfolio of clients Wide portfolio of technologies Employment stability Remote work opportunities Contracts with the biggest brands Great Place to Work Europe Many experts you can learn from Open and accessible management team