We are seeking a strategic and technically hands-on Senior DevOps to architect, govern, and scale our DevOps practices across both cloud (AWS, Azure) and on-prem environments. You will lead the design and implementation of policy-compliant CI/CD pipelines, define platform-agnostic toolchains, and work closely with DevSecOps engineers to embed security into every stage of the software delivery lifecycle. This role plays a critical part in our cloud transformation journey by ensuring consistent, secure, and scalable automation patterns that support modernization, governance, and business velocity.
Job Responsibilities:
- Define, implement, and continuously improve enterprise DevOps frameworks, policies, and best practices.
- Lead the build and lifecycle management of cloud-agnostic CI/CD pipelines across diverse application portfolios.
- Work closely with DevSecOps to integrate security controls (e.g., SAST, SCA, IaC scanning, container image scanning, signing) into DevOps workflows.
- Drive standardization and governance of tools across cloud and on-premise workloads.
- Enable seamless integration with cloud test environments, infrastructure as code (IaC), and GitOps practices.
- Collaborate with application teams, cloud architects, security, compliance, and auditors to align DevOps operations with regulatory expectations.
- Lead technical evaluation and onboarding of DevOps tools, including open-source and commercial solutions.
- Mentor DevOps engineers and promote continuous learning and technical excellence within the team.
- Maintain observability of the CI/CD lifecycle with logging, metrics, alerting, and traceability.
Job Requirements:
- Minimum 610 years of DevOps or platform engineering experience with multi-cloud or hybrid environments.
- Experience in the financial services sector or highly regulated industries.
- Certifications: GitHub Certified, CKA, Terraform Associate, or equivalent cloud certifications.
- Deep hands-on experience with GitHub, GitHub Actions, SonarQube, and GitHub Advanced Security (GHAS).
- Strong knowledge of DevSecOps tooling such as:
- Checkov, Trivy, Cosign, Snyk, Hadolint, and other static/dynamic scanners.
- Proficiency with Terraform, Ansible, and modern GitOps workflows using ArgoCD or FluxCD.
- Ability to support both cloud-native deployments (Kubernetes, serverless) and legacy/on-prem pipelines.
- Familiarity with secrets management using CyberArk or similar.
- Understanding of regulated SDLC environments with audit, policy enforcement, and compliance controls (e.g., segregation of duties, deployment approvals).
- Experience integrating monitoring tools (e.g., Prometheus, Grafana) into DevOps lifecycle.
