Senior DevSecOps & Observability Engineer - Johnson Controls

Key Responsibilities

• Design and implement end‑to‑end DevSecOps pipelines that integrate security testing, compliance checks, and automated deployments.
• Manage cloud infrastructure on AWS and Azure using Infrastructure‑as‑Code tools, ensuring scalability, reliability, and cost efficiency.
• Deploy and maintain observability stacks (metrics, logs, tracing) to provide real‑time insight into application performance and security posture.
• Collaborate with development and security teams to embed secure coding practices and threat modeling throughout the software lifecycle.
• Continuously evaluate and integrate new security and monitoring technologies, driving best‑practice adoption across the organization.

Requirements

• 5+ years of hands‑on experience in DevSecOps, cloud platforms (AWS and Azure), and CI/CD automation.
• Proficiency with Infrastructure‑as‑Code (e.g., Terraform, CloudFormation) and container orchestration (Docker, Kubernetes).
• Strong knowledge of security tooling such as SAST, DAST, secret scanning, and compliance frameworks.
• Experience implementing observability solutions (Prometheus, Grafana, ELK/EFK, OpenTelemetry).
• Excellent problem‑solving skills and ability to work cross‑functionally in fast‑paced environments.