Staff Software Engineer - DevSecOps - AWS/Azure - Terraform/Ansible - CI/CD Pipelines

2 Months ago • 9-14 Years • Devops

Job Summary

Job Description

We are seeking an experienced DevSecOps professional to lead and support enterprise security, compliance, and risk management initiatives. This role involves designing, implementing, and maintaining controls aligned with global compliance frameworks such as ISO 27001, SOC 2, and NIST 800-53. The ideal candidate will possess a deep understanding of security engineering principles, a strong compliance mindset, and a proven ability to drive cross-functional security programs. Key responsibilities include implementing and maintaining security controls, collaborating with auditors, developing automated monitoring tools, translating regulatory requirements into technical specifications, and performing gap assessments and risk analysis. A strong understanding of Kubernetes security, including RBAC, pod security policies, network policies, and secrets management, is also required.
Must have:
  • 8+ years in information security/compliance engineering
  • DevOps security practices, CI/CD integration
  • ISO 27001, SOC 2, NIST SP 800-53 experience
  • Cloud-native environments (AWS, Azure, GCP)
  • Infrastructure-as-code (Terraform, Ansible)
  • Access management, encryption, network security
  • Lead technical initiatives, work cross-functionally
  • Excellent written and verbal communication
Good to have:
  • CISSP, CISA, CISM, ISO 27001 certifications
  • Compliance automation platforms experience
  • Experience in regulated industries

Job Details

Job Description:

Experience: 9-14 Years

DevSecOps to lead and support our enterprise security, compliance, and risk management initiatives. This individual will play a key role in designing, implementing, and maintaining controls aligned with global compliance frameworks including ISO 27001, SOC 2, and NIST 800-53. The ideal candidate has a deep understanding of security engineering principles, a strong compliance mindset, and a proven track record in driving cross-functional security programs.

Key Responsibilities:

• Follow established processes for the implementation and maintenance of security controls aligned with ISO 27001, SOC 2, and NIST 800-53.
• Collaborate with security leadership to ensure adherence to ISO 27001, SOC 2, and NIST 800-53 controls and procedures.
• Collaborate with internal and external auditors to support audits, evidence gathering, and remediation efforts.
• Develop and maintain automated security and compliance monitoring tools and dashboards.
• Translate regulatory requirements into technical requirements and integrate them into the SDLC (Secure Development Lifecycle).
• Execute tasks related to the implementation and upkeep of compliance controls under ISO 27001, SOC 2, and NIST 800-53 guidance.
• Conduct gap assessments and risk analysis; define and track remediation efforts to ensure compliance readiness.
• Strong hands-on experience and understanding of Kubernetes security, including RBAC, pod security policies, network policies, and secrets management.

Required Qualifications:

• 8+ years of experience in information security or compliance engineering roles.
• Practical experience with DevOps security practices, including integrating security controls into CI/CD pipelines (GitLab CI, Jenkins, GitHub Actions, etc.)
• Strong understanding and hands-on experience with ISO 27001, SOC 2 (Type I and II), and NIST SP 800-53.
• Experience working in cloud-native environments (AWS, Azure, or GCP) with secure configuration and governance controls.
• Familiarity with cloud-native security (AWS, GCP, or Azure), container orchestration, and infrastructure-as-code tools like Terraform, Helm, or Ansible.
• Solid knowledge of access management, encryption, logging/monitoring, and network security principles.
• Demonstrated ability to lead technical initiatives, work cross-functionally, and influence at all levels.
• Excellent written and verbal communication skills with experience writing policies and technical documentation.

Preferred Qualifications:

• Professional certifications such as CISSP, CISA, CISM, ISO 27001 Lead Implementer/Auditor, or AWS Security Specialty etc.
• Experience with compliance automation platforms.
• Background in regulated industries such as fintech, healthcare, or government.

Similar Jobs

PayPal - Lead Product Manager

PayPal

Austin, Texas, United States (Hybrid)
1 Month ago
Notion - Corporate Finance

Notion

San Francisco, California, United States (On-Site)
2 Months ago
Team Liquid - Senior Full Stack Engineer

Team Liquid

Metro Manila, Philippines (Remote)
1 Month ago
Adobe - Director, Web Product Management

Adobe

Tokyo, Japan (On-Site)
3 Months ago
Survay Monkey - Staff Software Engineer

Survay Monkey

Bengaluru, Karnataka, India (Hybrid)
3 Months ago
Scale AI - Solutions Engineer

Scale AI

Washington, District Of Columbia, United States (On-Site)
3 Months ago
Capgemini - Automation Engineer

Capgemini

Hyderabad, Telangana, India (On-Site)
2 Months ago
Harvey - Staff Software Engineer, Site Reliability Engineer (SRE)

Harvey

San Francisco, California, United States (On-Site)
3 Weeks ago
Eqvilent - Python & DevOps Engineer

Eqvilent

(Remote)
6 Months ago
Visa - Sr. Manager - Site Reliability Engineer

Visa

Ashburn, Virginia, United States (Hybrid)
2 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Qualcomm - Sr Staff Physical Design Engineer

Qualcomm

Noida, Uttar Pradesh, India (On-Site)
3 Months ago
Sourcegraph  Inc  - Security Engineer [IC3]

Sourcegraph Inc

(Remote)
2 Months ago
Univision - Senior Product Manager, Partnerships

Univision

Bogota, Colombia (On-Site)
1 Year ago
Demandbase - Director, Customer Marketing

Demandbase

United States (On-Site)
2 Months ago
Internet Brands - Senior Director of Marketing

Internet Brands

El Segundo, California, United States (On-Site)
1 Month ago
Rain - Senior Backend Engineer

Rain

(Remote)
1 Month ago
PayPal - Senior Staff Machine Learning Scientist

PayPal

San Jose, California, United States (Hybrid)
2 Months ago
Ramp - Associate, Deal Desk

Ramp

New York, United States (On-Site)
3 Weeks ago
BioFire - Manufacturing Engineer II

BioFire

Salt Lake City, Utah, United States (On-Site)
1 Month ago
Highspot - Senior Product Manager, Agent Platform

Highspot

Vancouver, British Columbia, Canada (Hybrid)
1 Month ago

Get notifed when new similar jobs are uploaded

Jobs in Bengaluru, Karnataka, India

Sprinkler - Lead Technical Success Manager

Sprinkler

Maharashtra, India (Remote)
3 Months ago
PwC - Senior Associate AI Engineer - Data and Analytics - Advisory

PwC

Hyderabad, Telangana, India (On-Site)
1 Month ago
Cubic corporation - Senior Software Engineer (Mobile Back Office Dev)

Cubic corporation

Hyderabad, Telangana, India (Hybrid)
3 Months ago
Autodesk - Senior Technical Support Specialist AutoCAD

Autodesk

Bengaluru, Karnataka, India (Hybrid)
1 Year ago
Arcadia - Software Engineer II - Salesforce

Arcadia

Chennai, Tamil Nadu, India (Hybrid)
3 Months ago
Qualcomm - Staff Analog layout Engineer

Qualcomm

Bengaluru, Karnataka, India (On-Site)
2 Months ago
Capgemini - Products & Systems Engineer

Capgemini

Bengaluru, Karnataka, India (On-Site)
2 Months ago
ElevenLabs - Producer

ElevenLabs

India (Remote)
4 Months ago
Bestex Research - Senior Data Engineer

Bestex Research

Bengaluru, Karnataka, India (On-Site)
5 Months ago
Capgemini - Automation Tester

Capgemini

Hyderabad, Telangana, India (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Devops Jobs

Corsair - Automation Engineer

Corsair

Vietnam (On-Site)
4 Months ago
Ansys - Lead R&D Engineer (Cloud Platform Developer)

Ansys

Waterloo, Ontario, Canada (Remote)
3 Months ago
Apple - Engineering Project Manager, DevOps/SRE

Apple

Cupertino, California, United States (On-Site)
3 Months ago
CyberArk - Solutions Engineer, Enterprise Accounts - Central

CyberArk

United States (On-Site)
3 Months ago
Veeam Software - Platform Engineer

Veeam Software

Prague, Czechia (Remote)
2 Months ago
bytedance - Senior Software Engineer, Cloud Infrastructure

bytedance

San Jose, California, United States (On-Site)
8 Months ago
Veeam Software - Site Reliability Engineer, SaaS

Veeam Software

Seattle, Washington, United States (Remote)
1 Month ago
Attio - Solutions Engineer

Attio

New York, United States (Hybrid)
1 Month ago
GoTo Group - Senior Software Engineer - Event Platform

GoTo Group

Gurugram, Haryana, India (On-Site)
10 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Dubai, Dubai, United Arab Emirates (Remote)

Philippines (Remote)

Raleigh, North Carolina, United States (Remote)

State Of São Paulo, Brazil (Remote)

North Carolina, United States (Remote)

Reading, England, United Kingdom (Hybrid)

California, United States (Remote)

View All Jobs

Get notified when new jobs are added by extreme network

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug