Senior DevSecOps Engineer

Key Responsibilities CI/CD & Pipeline Engineering • Design, build, and maintain end-to-end CI/CD pipelines for application and platform deployments • Automate build, test, security scanning, packaging, and deployment workflows across multiple environments • Develop and maintain reusable pipeline templates and automation frameworks to standardize delivery practices • Manage artifacts, binaries, and dependencies using JFrog Artifactory and Sonatype Nexus Repository • Embed security and quality controls into pipelines: SAST (Fortify), code quality and secrets scanning (SonarQube), and SCA for OSS libraries (Sonatype Nexus) • Automate security validations, policy enforcement, guardrails, and audit evidence collection across pipelines and cloud environments Cloud & Platform Engineering (AWS) • Build and operate cloud-native CI/CD pipelines and automation workflows on AWS • Design secure, scalable, and resilient cloud architectures aligned with operational and compliance requirements • Automate provisioning, configuration, scaling, and lifecycle management Automation and AI • Apply Infrastructure / Operations automation principles (e.g. configuration-driven automation, version control, code reviews). • Drive adoption of AI across teams by identifying practical use cases and integrating AI capabilities into everyday workflows Requirements: • 7+ years in DevSecOps and automation engineering • Hands-on experience with: Bitbucket, Jenkins, Ansible, Octopus, JFrog, Sonatype Nexus, SonarQube, Fortify, AWS CodeCommit, AWS CodePipeline • Experience supporting MAS, Group Audit, Risk & Compliance, and third-party audit engagements • Proficiency in Python and Unix shell scripting • Experience in AWS cloud environments • Familiarity with Kubernetes and containerised microservices • Experience with Elasticsearch and Kibana dashboards is a plus