DevSecOps & Compliance Engineer - ag

Key Responsibilities

• Design, build, and operate CI/CD pipelines that integrate security testing and compliance checks.
• Automate provisioning and management of cloud resources on AWS using Infrastructure as Code (Terraform, CloudFormation).
• Containerize applications with Docker and orchestrate them on Kubernetes clusters, ensuring secure configurations.
• Develop and maintain security automation scripts and tools in Python to enforce hardening standards and vulnerability scanning.
• Collaborate with development and operations teams to embed DevSecOps practices throughout the software lifecycle.
• Monitor, audit, and remediate compliance gaps, supporting certifications and regulatory requirements.

Requirements

• Strong experience with AWS services and IaC tools such as Terraform or CloudFormation.
• Proficiency in container technologies (Docker, Kubernetes) and CI/CD platforms (Jenkins, GitLab CI, GitHub Actions).
• Solid scripting/programming skills in Python and familiarity with security tooling (SAST, DAST, vulnerability scanners).
• Understanding of compliance frameworks (e.g., ISO 27001, DO-178C, GDPR) and ability to implement controls.
• Excellent problem‑solving abilities and teamwork orientation in a fast‑paced engineering environment.