Role overview

Senior DevSecOps Engineer| UAE or Remote

Requirements and responsibilities

Readable role content extracted into sections for faster review.

What Youโ€™ll be Doing

  • Act as a senior technical owner for DevSecOps and cloud security as the organization scales toward enterprise standards.
  • Operate effectively with a high degree of ambiguity, proactively shaping direction rather than executing predefined tasks.
  • Design solutions that are scalable, auditable, and sustainable across multiple teams and regions.
  • Maintain a strong bias toward quality, detail, and correctness in architecture, implementation, and documentation.
  • Think beyond immediate delivery and continuously improve foundations, tooling, and processes.

Core Responsibilities:

  • Architect, implement, and continuously improve cloud security and DevSecOps practices across the organization.
  • Design and maintain secure, scalable AWS infrastructure using Terraform with a strong emphasis on best practices and maintainability.
  • Collaborate closely with engineering teams on CI/CD, code-related workflows, and delivery practices.
  • Own and evolve monitoring, alerting, and observability using Datadog.
  • Lead the design and implementation of foundational security capabilities, including:Identity and access managementSecrets and key managementNetwork security and segmentationLogging, auditing, and incident readiness
  • Identity and access management
  • Secrets and key management
  • Network security and segmentation
  • Logging, auditing, and incident readiness
  • Drive security governance and GRC-related initiatives.
  • Provide mentorship and set engineering standards through example, reviews, and documentation.
  • Collaborate with Engineering and IT Operations teams to ensure systems are secure, resilient, and operationally sound.

Details

  • Identity and access management
  • Secrets and key management
  • Network security and segmentation
  • Logging, auditing, and incident readiness

What You will need for this position

  • 10+ years of professional experience in DevOps, DevSecOps, Security Engineering, or related roles.
  • Proven track record of successfully delivering meaningful security and infrastructure improvements in complex environments.
  • Strong hands-on experience with:AWS (security, networking, IAM, and core services)Terraform (modular, scalable, and secure infrastructure-as-code)CI/CD pipelines (CircleCI or comparable tools)Datadog or similar observability platforms
  • AWS (security, networking, IAM, and core services)
  • Terraform (modular, scalable, and secure infrastructure-as-code)
  • CI/CD pipelines (CircleCI or comparable tools)
  • Datadog or similar observability platforms
  • Solid understanding of security and GRC best practices, including risk management, controls, and audit concepts.
  • Practical experience with day-to-day IT operations, including SaaS tooling, access management, operational workflows, and application of IT best practices in a growing organization.
  • Demonstrated ability to work independently, prioritize effectively, and drive initiatives from idea to execution.
  • Strong attention to detail, documentation quality, and operational rigor.
  • Clear communicator who can explain complex technical and security concepts to both technical and non-technical audiences.

Strong hands-on experience with:

  • AWS (security, networking, IAM, and core services)
  • Terraform (modular, scalable, and secure infrastructure-as-code)
  • CI/CD pipelines (CircleCI or comparable tools)
  • Datadog or similar observability platforms

Nice to haves

  • Experience with compliance frameworks.

Key Metrics

  • Security postureReduction in high- and critical-risk findingsConsistent implementation of security controls and best practices
  • Reduction in high- and critical-risk findings
  • Consistent implementation of security controls and best practices
  • DevSecOps maturityIncreased standardization and reliability of infrastructure and security patternsReduced manual work and configuration drift through durable automation
  • Increased standardization and reliability of infrastructure and security patterns
  • Reduced manual work and configuration drift through durable automation
  • GRC & audit readinessAbility to meet audit and enterprise customer requirements with minimal frictionHigh-quality, repeatable security documentation and evidence
  • Ability to meet audit and enterprise customer requirements with minimal friction
  • High-quality, repeatable security documentation and evidence
  • Operational qualityClear, actionable observability and alertingFewer security and operational issues caused by process or configuration gaps
  • Clear, actionable observability and alerting
  • Fewer security and operational issues caused by process or configuration gaps
  • Long-term impactDelivery of scalable, well-architected improvements adopted across teamsTrust established as a senior technical owner and advisor
  • Delivery of scalable, well-architected improvements adopted across teams
  • Trust established as a senior technical owner and advisor

Security posture

  • Reduction in high- and critical-risk findings
  • Consistent implementation of security controls and best practices

DevSecOps maturity

  • Increased standardization and reliability of infrastructure and security patterns
  • Reduced manual work and configuration drift through durable automation

GRC & audit readiness

  • Ability to meet audit and enterprise customer requirements with minimal friction
  • High-quality, repeatable security documentation and evidence

Operational quality

  • Clear, actionable observability and alerting
  • Fewer security and operational issues caused by process or configuration gaps

Long-term impact

  • Delivery of scalable, well-architected improvements adopted across teams
  • Trust established as a senior technical owner and advisor
Similar roles

Keep a backup shortlist.

Browse stack
FocusDevSecOps EngineerRole area
Seniority signalSeniorCandidate level
StackAWS, CI/CDPrimary skills
Location66 accepted countriesEligibility

Stack

Use these tags to compare similar remote roles.

Location eligibility

Candidates should apply only when their profile country is listed here.

Your profileCountry not setSign in to check your country against this role.
View all 66 accepted countries
AlbaniaArgentinaArmeniaAustriaBahamasBarbadosBelarusBelgiumBelizeBoliviaBrazilBulgariaCanadaChileColombiaCosta RicaCroatiaCyprusCzechiaDenmarkDominican RepublicEcuadorEl SalvadorEstoniaFinlandFranceGermanyGreeceGuatemalaHondurasHungaryIcelandIrelandItalyJamaicaLatviaLithuaniaLuxembourgMaltaMexicoMoldovaMontenegroNetherlandsNicaraguaNorth MacedoniaNorwayPanamaParaguayPeruPolandPortugalPuerto RicoRomaniaSerbiaSlovakiaSloveniaSpainSwedenSwitzerlandTrinidad and TobagoTurkeyUkraineUnited KingdomUruguayUSAVenezuela

Hiring flow

WithMira shows the role, then sends candidates to the company application.

1Check role fit, stack, and location eligibility in WithMira.
2Open the company application page from the tracked apply link.
3Save the role or subscribe for similar opportunities before leaving.
Apply on company siteCompany siteOpen link