Senior DevSecOps Engineer – Cloud Infrastructure Security
ARCHIVED
We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.
We are looking for an experienced Senior DevSecOps Engineer to lead the security of our cloud infrastructure and deployment platforms for web, mobile, and blockchain applications. This role goes beyond implementing security tools—it requires someone who can actively influence the architecture, design, deployment, and operational security of cloud-native applications.The ideal candidate will work closely with Engineering, DevOps, Solution Architects, and Product teams to ensure every application is deployed on a secure, scalable, and resilient cloud infrastructure. You will be responsible for embedding security into the infrastructure lifecycle while enabling fast and reliable software delivery.Key ResponsibilitiesDesign and implement secure cloud infrastructure architectures for web, mobile, and blockchain applications.Work with Solution Architects and Engineering teams to define secure, scalable, and highly available cloud environments.Own the security of application deployments across development, staging, and production environments.Design and implement DevSecOps practices throughout the Software Development Lifecycle (SDLC).Build and secure CI/CD pipelines by integrating automated security controls, vulnerability scanning, and policy enforcement.Implement Infrastructure as Code (Terraform, CloudFormation, or similar) following security best practices.Secure Kubernetes clusters, container platforms, and orchestration environments.Design and enforce IAM, RBAC, least-privilege access, secrets management, and identity governance.Implement cloud security controls across AWS, Azure, or GCP, including networking, encryption, logging, monitoring, and compliance.Perform infrastructure security reviews and identify risks during architecture and deployment planning.Collaborate with development teams to ensure applications are deployed using secure cloud-native patterns.Implement infrastructure monitoring, threat detection, and incident response capabilities.Secure APIs, ingress controllers, load balancers, WAFs, and cloud networking components.Conduct infrastructure vulnerability assessments and coordinate remediation efforts.Maintain disaster recovery, backup, high availability, and business continuity strategies.Support compliance initiatives such as ISO 27001, SOC 2, PCI DSS, and other security frameworks.Document security architecture, deployment standards, and cloud security best practices.Must-Have Qualifications8+ years of experience in DevSecOps, Cloud Security, Infrastructure Security, or Platform Engineering.Strong hands-on experience designing and securing cloud infrastructure on AWS, Azure, or GCP.Proven experience architecting secure environments for web and mobile application deployments.Strong understanding of cloud networking, VPC/VNet design, subnets, firewalls, VPNs, NAT Gateways, Load Balancers, DNS, and private networking.Hands-on experience with Infrastructure as Code using Terraform, CloudFormation, or similar tools.Experience designing and securing CI/CD pipelines using GitLab CI, Azure DevOps, GitHub Actions, or Jenkins.Strong expertise in Kubernetes, Docker, and container security.Experience implementing IAM, RBAC, Identity Federation, Secrets Management, and Zero Trust principles.Knowledge of infrastructure hardening, vulnerability management, and cloud security best practices.Experience with monitoring and observability tools such as Prometheus, Grafana, ELK/OpenSearch, Datadog, or similar platforms.Strong scripting and automation skills using Python, Bash, or Go.Experience collaborating with engineering teams during solution architecture and production deployments.Strong analytical, troubleshooting, and incident response skills.Preferred QualificationsExperience securing FinTech, blockchain, Web3, or high-availability cloud platforms.Knowledge of Kubernetes security tools such as Kyverno, OPA Gatekeeper, Falco, or Trivy.Experience with cloud security platforms such as Prisma Cloud, Wiz, Aqua Security, or Microsoft Defender for Cloud.Familiarity with service mesh technologies such as Istio or Linkerd.Understanding of SRE principles, production reliability, and operational excellence.Relevant certifications such as AWS Security Specialty, CKS, CKA, AZ-500, CISSP, or Terraform Associate.Why Join UsPlay a key role in designing secure cloud infrastructure for next-generation web, mobile, and blockchain applications.Influence cloud architecture decisions from the early design phase through production deployment.Build and mature DevSecOps practices across the organization.Work with modern cloud-native technologies in a fast-paced engineering environment.Opportunity to grow into Cloud Security Architect, Principal DevSecOps Engineer, or Platform Security Lead.