{bc}
linkedin

Senior DevSecOps Engineer

SIGMA
Riyadh, KSA
Full Time
Senior
Onsite
4 days ago
DevSecOpsCI/CDGitLabAzure DevOpsCloudBeesJenkins
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

DevSecOpsCI/CDGitLab
Smart Apply

Full Job Posting

Job Summary

  • The Senior Resident DevSecOps Engineer serves as the technical lead and subject matter expert for Application Security and DevSecOps initiatives. The role is responsible for designing, implementing, governing, and continuously improving security controls throughout the Software Development Lifecycle

Key Responsibilities

  • Lead the organization's DevSecOps maturity improvement initiatives.
  • Act as the primary technical authority for DevSecOps and application security activities.
  • Provide technical guidance, mentoring, and oversight to junior engineers and development teams.
  • Design, review, and manage security integrations across CI/CD platforms such as GitLab, Azure DevOps, and CloudBees.
  • Implement and optimize SAST, SCA, DAST, IAST, IaC Security Scanning, and Secrets Management.
  • Define vulnerability management processes and workflows.
  • Lead vulnerability triage, risk assessment, prioritization, tracking, and remediation activities.
  • Establish remediation SLAs and monitor compliance.
  • Conduct secure design reviews throughout the SDLC.
  • Support API security implementation and security architecture reviews.
  • Validate secure coding practices and development standards.
  • Develop and maintain security frameworks, policies, procedures, standards, guidelines, RACI matrices, and security KPIs/KGIs.

Required Qualifications

  • Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or related field.
  • 3+ years of experience in Application Security, DevSecOps, or Secure Software Engineering.
  • Strong experience with CI/CD security integration and automation.
  • Hands on experience with GitLab, Azure DevOps, CloudBees, Jenkins, or similar platforms.
  • Strong understanding of OWASP Top 10, Secure SDLC, and DevSecOps methodologies.
  • Experience with cloud environments (AWS, Azure, or GCP).
  • Experience with API security and container security.

Preferred Certifications

  • At least one of: GIAC Cloud Security Automation (GCSA), GIAC Defensible Security Architecture (GDSA), DevSecOps Foundation/Professional, CSSLP, Certified Kubernetes Security Specialist (CKS), Microsoft AZ 400, AWS Certified DevOps Engineer – Professional.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at SIGMA