DevOps Security Engineer

DevOps Security Engineer

Role Overview:

The DevOps Security Engineer is responsible for designing, implementing, and maintaining efficient DevOps workflows to support continuous integration, continuous deployment, and infrastructure automation. This role bridges the gap between development and operations teams, ensuring seamless collaboration, reliable software delivery, and scalable infrastructure. The DevOps Security Engineer plays a critical role in automating processes, optimising performance, and maintaining high availability in modern software environments.

Key Responsibilities:

• Adhere to engineering principles and standards.
• Follow security policies to ensure compliance with Secure by Design principles.
• Develop and manage CI/CD pipelines to automate build, test, and deployment processes using tools like Jenkins, GitHub Actions, or GitLab CI.
• Implement and manage infrastructure as code (IaC) solutions using tools such as Terraform, Ansible, or CloudFormation.
• Monitor and optimise system performance, ensuring reliability and scalability of applications and infrastructure.
• Collaborate with development and operations teams to integrate DevOps best practices into the software development lifecycle.
• Design and manage cloud infrastructure on platforms such as AWS, Azure, or Google Cloud, ensuring secure and cost-efficient operations.
• Integrate application security into DevOps processes, including static code analysis, dependency checks, and penetration testing.
• Implement robust monitoring and alerting solutions using tools like Prometheus, Grafana, or ELK Stack, focusing on anomaly detection and incident response.
• Collaborate with security teams to ensure compliance with best practices.
• Automate security workflows such as vulnerability detection, patch management, and compliance audits.
• Troubleshoot and resolve issues in development, test, and production environments, minimising downtime and disruptions.
• Automate routine tasks such as system updates, backups, and resource provisioning to improve efficiency.
• Document DevOps processes, workflows, and best practices to facilitate knowledge sharing and team alignment.
• Participate in on-call rotations and respond to incidents to minimise downtime and disruptions.
• Demonstrate and align with core values, which will be considered in performance management.

Skills, Knowledge, and Experience:

• Passionate about automation and continuous improvement.
• Strong communication and collaboration skills to work effectively with cross-functional teams.
• Detail-oriented and capable of managing multiple tasks in a fast-paced environment.
• Adaptable and eager to learn new tools, technologies, and methodologies.
• Focused on delivering high-quality solutions that align with business goals.