Senior DevSecOps Architect

Senior DevSecOps Architect focuses on risk & issue management - act with urgency to manage emerging security issues.

What the role involves

• Risk & Issue Management - Act with urgency to manage emerging security issues.
• Monitor risk indicators, and recommend resolutions. Serve as the escalation point for IT Risk and Cyber domains related to DevSecOps and Change Management.
• Audit & Regulatory Support - Support audit, regulatory, and risk activities by providing evidence of control effectiveness and translating compliance requirements into automated, r.
• Continuous Improvement - Identify and address unfamiliar technology components, share best practices, and influence peers to drive continuous improvement in DevSecOps maturity acro.

Skills and requirements

• Advanced threat modeling experience (., STRIDE-LM) for DevOps/CICD Pipelines and toolchains.
• Expert ability to advise and influence secure pipeline architecture using Policy-as-Code and automated gates.
• Hands-on security expertise in AWS and GCP.
• Practical experience creating reference architectures and patterns for engineering teams.

Confirmed role details

• A proven track record of mentoring developers and fostering a culture where security is a shared responsibility.
• Relevant certifications: AWS Certified Security - Specialty, GCP Professional Cloud Security Engineer, CISSP, CKS, OSCP.
• Experience operating in regulated organizations with a 3LoD model.
• Experience translating policy and regulatory requirements into control design for engineers and architects.

Candidate fit

• automation discipline, troubleshooting, documentation, and confidence with operational reliability