Senior DevSecOps Lead

The Role

We are seeking a passionate and experienced Senior DevSecOps Leader to spearhead the integration of security principles into every stage of our software development processes. In this pivotal role, you will lead our DevOps and SecOps teams, fostering a security-first mindset, optimizing our development pipelines, and continuously enhancing our security posture.

Key Responsibilities

• DevSecOps Strategist: Develop comprehensive DevSecOps strategies aligned with the company's security objectives and business goals. Collaborate with stakeholders to continuously assess and refine our security approach.
• Process Architect: Design and implement robust CI/CD pipelines with integrated SAST and DAST tools and methodologies for a seamless and secure development environment.
• Automation Champion: Leverage advanced scripting skills, Jenkins expertise, and other tools to automate security testing, infrastructure, deployment, and monitoring tasks throughout the SDLC.
• Mentor & Team Builder: Guide, mentor, and elevate the performance of our DevOps and SecOps teams, creating a knowledge-sharing and collaborative work environment focused on innovation within strong security parameters.
• Security Evangelist: Promote a security-focused culture across the organization. Conduct training, workshops, and awareness sessions to embed security practices as a core development pillar.
• Trend Spotter: Remain abreast of emerging DevSecOps technologies, tools, and best practices. Evaluate and present potential solutions to maintain our technology's leading edge.

Qualifications

• Experience: A minimum of 15 years of experience within DevSecOps, with at least 5 years in a leadership capacity.
• SDLC Fluency: Demonstrated expertise in various SDLC methodologies (Agile, Waterfall, etc.) and an ability to tailor their application depending on project requirements.
• Requirements Gatherer: Proven track record of eliciting, analyzing, and documenting both functional and non-functional requirements, ensuring software solutions align with business needs and security standards.
• Security Mindset: In-depth understanding of common security threats, vulnerabilities, and mitigation strategies. Working knowledge of industry-recognized security frameworks (e.g., OWASP, NIST).
• Toolset Master: Proficiency in configuring and integrating SAST (e.g., SonarQube, Veracode, Checkmarx) and DAST (e.g., Burp Suite, OWASP ZAP) tools.
• Jenkins Authority: Exceptional Jenkins (or comparable CI/CD tools) skills for crafting robust, automated security-focused pipelines.
• Leader & Communicator: Excellent leadership, problem-solving, and interpersonal communication skills for collaboration and conflict resolution within and across teams.

Desired Skills (Bonus Points)

• Cloud Expertise: Experience in cloud environments (AWS, Azure, GCP) is a significant advantage.
• Certifications: Relevant security certifications (CISSP, CEH, etc.) demonstrate continued commitment to professional development.

Why Join Us

• Shape the Future: Play a critical role in defining the future of secure software development at our company.
• Meaningful Work: Contribute to delivering robust and secure products and services that positively impact our clients.
• Growth Environment: Continuous learning and development opportunities with mentorship and support to expand your skillset.
• Competitive Package: [ Outline your excellent compensation and benefits package]

Salary : $150,000 - $200,000