Skills
Required
devsecops
design
jenkins
github
automation
software
development
code
deployment
security
sonarqube
fortify
analysis
artifactory
scanning
compliance
aws
iam
support
pipeline
automate
efficiency
configuration
management
terraform
ansible
engineering
governance
devops
snyk
python
containerization
orchestration
docker
kubernetes
troubleshooting
integration
Job
Description
Responsibilities: • Design, implement, and maintain secure CI/CD pipelines using Jenkins, GitHub Actions, and other automation tools. • Integrate DevSecOps best practices into the software development process, focusing on secure code delivery and deployment. • Implement and manage security tools such as SonarQube, Fortify, Prisma Cloud, or similar for static and dynamic code analysis. • Administer artifact repositories like Nexus or JFrog Artifactory to manage build dependencies and artifacts. • Collaborate with development, security, and operations teams to streamline secure software delivery processes. • Develop custom integrations between CI/CD tools and security scanning tools, ensuring compliance with enterprise security policies. • Leverage AWS services (EC2, S3, IAM, Lambda, CloudFormation, etc.) to support infrastructure automation and deployment. • Monitor pipeline health and automate feedback loops to improve quality, security, and efficiency. • Champion infrastructure-as-code and configuration management using tools like Terraform, Ansible, or CloudFormation. • Act as a key contributor within the Enterprise CI/CD Engineering team, contributing to platform evolution, best practices, and governance. ⸻ Required Skills: • strong experience in a DevOps/DevSecOps engineering role. • Strong expertise with Jenkins, GitHub, SonarQube, Nexus/JFrog, and CI/CD pipeline automation. • Hands-on experience with AWS cloud services and infrastructure as code (IaC). • Proficiency with integrating and managing security tools like Fortify, Prisma Cloud, Snyk, or similar. • Experience creating custom scripts and integrations using Python, Bash, Groovy, or equivalent languages. • Solid understanding of containerization and orchestration tools (Docker, Kubernetes is a plus). • Strong problem-solving skills and experience in troubleshooting complex CI/CD or security integration issues. • Prior experience working in or supporting an Enterprise CI/CD Engineering team is highly desirable. Show more Show less
