Summary

We are seeking a highly experienced Senior DevSecOps Engineer to design, implement, and operationalize secure CI/CD pipelines based on GitOps principles for a mission-critical system.

Main Responsibilities:

• Design and implement secure CI/CD pipelines following GitOps principles.

• Define branching strategies, repository governance, and artifact lifecycle management.

• Establish automated build, test, scan, sign, and deploy workflows.

• Ensure repeatable and auditable deployment processes.

• Integrate automated testing into pipelines (unit, integration, regression).

• Enforce quality gates before artifact promotion.

• Implement security scanning tools integration within CI/CD pipelines.

• Implement Software Bill of Materials (SBOM) generation and ensure compliance.

• Design and implement artifact signing using Hardware Security Module (HSM).

• Implement container build workflows and deploy applications to Kubernetes.

Key Requirements:

• Advanced expertise in DevOps principles and secure SDLC.

• Strong experience in Jenkins pipeline development.

• Deep knowledge of GitOps workflows.

• Hands-on experience integrating Black Duck, Checkmarx, Coverity, and Trivy.

• Experience generating SBOM using CycloneDX.

• Strong Kubernetes experience (Helm, manifests, deployment automation).

• Proficiency in scripting (Python, Bash, Go).

• Strong understanding of cybersecurity practices.

Nice to Have:

• Knowledge of network protocols and wireless communication standards.

• Experience working with high-security or regulated environments.

• Certifications like AWS Certified DevOps Engineer, CKA, CKAD, CISSP.

Other Details:

• Location: Abu Dhabi - UAE

• Project Duration: 6 months extendable

• Reporting To: Principal Architect - Security