Sr DevSecops Engineer

• We are seeking a Senior DevSecOps Engineer to lead the implementation of secure, automated, and scalable cloud-native development pipelines for digital health platforms. This role demands deep hands-on expertise in DevOps tooling, cloud infrastructure, and security integration. You will work closely with engineering, security, and product teams to embed security into every stage of the software development lifecycle.
• This is a DevOps-heavy role, and while senior, it requires a strong hands-on contribution to CI/CD, infrastructure automation, and security tooling.

Key Skills:

• Cloud Platforms: Google Cloud Platform (preferred) and at least one of AWS or Azure
• DevOps Tools: Azure DevOps (preferred), GitHub Actions, Jenkins, ArgoCD
• Infrastructure as Code (IaC): Terraform, Shell scripting
• Security Tooling: SAST, DAST, threat modeling, vulnerability scanning
• Containers & Orchestration: Docker, Kubernetes
• Version Control & Artifact Management: Git, Nexus, Artifactory
• Identity & Access Management: IAM, OAuth, SSO
• Compliance & Standards: NIST, CIS, HIPAA, GDPR, ISO 27001
• Monitoring & Logging: Prometheus, Grafana, ELK stack
• Agile & Collaboration: Jira, Confluence, Scrum practices

Responsibilities:

• Design and implement secure CI/CD pipelines and integrate security tools across development workflows
• Collaborate with engineering and security teams to embed DevSecOps practices into cloud-native platforms
• Deliver infrastructure automation and ensure secure provisioning using Terraform and container orchestration
• Monitor and optimize pipeline performance, reliability, and scalability
• Conduct code reviews and enforce security and compliance standards
• Stay current with emerging DevSecOps tools and cloud security practices
• Support regulatory compliance for healthcare environments
• Participate in agile sprints and contribute to product planning and prioritization
• Mentor junior engineers and promote a culture of secure development

Qualifications:

• bachelors degree in Computer Science, Engineering, or a related field
• 3+ years of hands-on experience with GCP (preferred) and either AWS or Azure
• Proven experience in DevOps and security automation in enterprise environments
• Familiarity with healthcare or regulated environments is a plus
• Strong analytical and problem-solving skills
• Excellent communication and collaboration abilities

Ideal Candidate:

• A hands-on engineer who thrives in agile environments and is passionate about building secure, automated platforms.
• You combine deep DevOps expertise with a strong understanding of security principles and enjoy solving complex infrastructure challenges in regulated domains.