Resumo da vaga

Senior DevSecOps Engineer| UAE or Remote

Requisitos e responsabilidades

Conteúdo da vaga extraído em seções para revisão mais rápida.

What You’ll be Doing

  • Act as a senior technical owner for DevSecOps and cloud security as the organization scales toward enterprise standards.
  • Operate effectively with a high degree of ambiguity, proactively shaping direction rather than executing predefined tasks.
  • Design solutions that are scalable, auditable, and sustainable across multiple teams and regions.
  • Maintain a strong bias toward quality, detail, and correctness in architecture, implementation, and documentation.
  • Think beyond immediate delivery and continuously improve foundations, tooling, and processes.

Core Responsibilities:

  • Architect, implement, and continuously improve cloud security and DevSecOps practices across the organization.
  • Design and maintain secure, scalable AWS infrastructure using Terraform with a strong emphasis on best practices and maintainability.
  • Collaborate closely with engineering teams on CI/CD, code-related workflows, and delivery practices.
  • Own and evolve monitoring, alerting, and observability using Datadog.
  • Lead the design and implementation of foundational security capabilities, including:Identity and access managementSecrets and key managementNetwork security and segmentationLogging, auditing, and incident readiness
  • Identity and access management
  • Secrets and key management
  • Network security and segmentation
  • Logging, auditing, and incident readiness
  • Drive security governance and GRC-related initiatives.
  • Provide mentorship and set engineering standards through example, reviews, and documentation.
  • Collaborate with Engineering and IT Operations teams to ensure systems are secure, resilient, and operationally sound.

Details

  • Identity and access management
  • Secrets and key management
  • Network security and segmentation
  • Logging, auditing, and incident readiness

What You will need for this position

  • 10+ years of professional experience in DevOps, DevSecOps, Security Engineering, or related roles.
  • Proven track record of successfully delivering meaningful security and infrastructure improvements in complex environments.
  • Strong hands-on experience with:AWS (security, networking, IAM, and core services)Terraform (modular, scalable, and secure infrastructure-as-code)CI/CD pipelines (CircleCI or comparable tools)Datadog or similar observability platforms
  • AWS (security, networking, IAM, and core services)
  • Terraform (modular, scalable, and secure infrastructure-as-code)
  • CI/CD pipelines (CircleCI or comparable tools)
  • Datadog or similar observability platforms
  • Solid understanding of security and GRC best practices, including risk management, controls, and audit concepts.
  • Practical experience with day-to-day IT operations, including SaaS tooling, access management, operational workflows, and application of IT best practices in a growing organization.
  • Demonstrated ability to work independently, prioritize effectively, and drive initiatives from idea to execution.
  • Strong attention to detail, documentation quality, and operational rigor.
  • Clear communicator who can explain complex technical and security concepts to both technical and non-technical audiences.

Strong hands-on experience with:

  • AWS (security, networking, IAM, and core services)
  • Terraform (modular, scalable, and secure infrastructure-as-code)
  • CI/CD pipelines (CircleCI or comparable tools)
  • Datadog or similar observability platforms

Nice to haves

  • Experience with compliance frameworks.

Key Metrics

  • Security postureReduction in high- and critical-risk findingsConsistent implementation of security controls and best practices
  • Reduction in high- and critical-risk findings
  • Consistent implementation of security controls and best practices
  • DevSecOps maturityIncreased standardization and reliability of infrastructure and security patternsReduced manual work and configuration drift through durable automation
  • Increased standardization and reliability of infrastructure and security patterns
  • Reduced manual work and configuration drift through durable automation
  • GRC & audit readinessAbility to meet audit and enterprise customer requirements with minimal frictionHigh-quality, repeatable security documentation and evidence
  • Ability to meet audit and enterprise customer requirements with minimal friction
  • High-quality, repeatable security documentation and evidence
  • Operational qualityClear, actionable observability and alertingFewer security and operational issues caused by process or configuration gaps
  • Clear, actionable observability and alerting
  • Fewer security and operational issues caused by process or configuration gaps
  • Long-term impactDelivery of scalable, well-architected improvements adopted across teamsTrust established as a senior technical owner and advisor
  • Delivery of scalable, well-architected improvements adopted across teams
  • Trust established as a senior technical owner and advisor

Security posture

  • Reduction in high- and critical-risk findings
  • Consistent implementation of security controls and best practices

DevSecOps maturity

  • Increased standardization and reliability of infrastructure and security patterns
  • Reduced manual work and configuration drift through durable automation

GRC & audit readiness

  • Ability to meet audit and enterprise customer requirements with minimal friction
  • High-quality, repeatable security documentation and evidence

Operational quality

  • Clear, actionable observability and alerting
  • Fewer security and operational issues caused by process or configuration gaps

Long-term impact

  • Delivery of scalable, well-architected improvements adopted across teams
  • Trust established as a senior technical owner and advisor
Vagas similares

Mantenha uma lista reserva.

Ver stack
FocoDevSecOps EngineerÁrea da vaga
Sinal de senioridadeSeniorNível do candidato
StackAWS, CI/CDSkills principais
Localização66 países aceitosElegibilidade

Stack

Use estas tags para comparar vagas remotas similares.

Elegibilidade de localização

Candidatos devem aplicar apenas quando o país do perfil estiver listado aqui.

Fluxo de contratação

O WithMira mostra a vaga e depois envia candidatos para a aplicação da empresa.

1Confira fit da vaga, stack e elegibilidade de localização no WithMira.
2Abra a página de aplicação da empresa pelo link rastreado.
3Salve a vaga ou assine oportunidades similares antes de sair.
Aplicar no site da empresaSite da empresaAbrir link