Senior DevSecOps - AWS - SRE

Senior DevSecOps Engineer(AWS)

We are looking for a Senior DevSecOps Engineer with deep expertise in AWS cloud security, DevSecOps best practices, and a strong understanding of Site Reliability Engineering (SRE).

The ideal candidate will be responsible for securing and optimizing cloud infrastructure, automating security controls, and ensuring compliance while maintaining system reliability and

performance. The ideal candidate welcomes the challenge of building in a dynamic and ever changing environment, and is interested in bringing a culture of operational excellence to the team. They enjoy seeing their designs run at scale with automation, testing, and an excellent operational mindset. If you exemplify the ethics of, "If you have to do something more than once, automate it," we want to hear from you!

Responsibilities

• Design and implement security automation within CI/CD pipelines to enforce best practices.

• Integrate and manage security tools (SAST, DAST, SCA) such as Snyk, SonarQube, Reversing Labs, semgrep, etc..

• Implement PR/release blocking mechanisms to prevent insecure code from merging into production.

• Manage secrets management solutions (e.g., AWS Secrets Manager).
• Ensure security, compliance, and governance for AWS infrastructure, including EC2,

ALB, ASG, RDS, IAM, and Lambda.

• Implement IAM best practices, role-based access control (RBAC), and least privilege principles.

• Develop and enforce infrastructure security policies using AWS Security Hub, GuardDuty, and Config.

• Set up logging, monitoring, and anomaly detection with CloudTrail, CloudWatch, and

SIEM tools.

• Collaborate with SRE teams to ensure resilient, scalable, and secure infrastructure.
• Implement observability using Splunk, Grafana, ELK Stack, Datadog etc..
• Automate incident response and remediation using AWS Lambda and event-driven architectures.

• Conduct regular security audits, penetration testing, and cloud risk assessments.
• Work closely with developers, security teams, and SREs to drive a security-first culture.
• Mentor junior engineers on AWS security, automation, and best practices.
• Document security frameworks, best practices, and incident response procedures.

Qualifications

• 5+ years of experience in AWS cloud security, DevSecOps best practices, and a strong understanding of Site Reliability Engineering (SRE)

• AWS Expertise – Hands-on experience with EC2, ALB, ASG, RDS, IAM, Lambda, CloudFormation, and Terraform.

• DevSecOps & Security Tooling – Experience with SAST, DAST, SCA, and container security tools.

• CI/CD Security – Expertise in securing GitHub Actions, CircleCI, Jenkins, or AWS CodePipeline.

• Automation & Infrastructure as Code (IaC) – Proficiency in Terraform, Ansible, or AWS CloudFormation.

• Observability & Logging – Experience with Splunk, CloudWatch, ELK Stack, Datadog.
• Scripting & Development – Strong coding skills in Python, Bash, or Go.
• Compliance & Governance – Understanding of AWS Well-Architected Framework.
• Excellent collaboration skills with cross-functional teams.
• Strong analytical and problem-solving skills.
• Ability to work independently and drive security initiatives.
• Good communication skills, with the ability to influence others and communicate complex technical concepts to different audiences