Deputy Director - DevOps Architecture

Overview

We are seeking a seasoned DevSecOps Lead to own and advance our security-by-design approach across the entire software development lifecycle. In this role, you will define and drive a comprehensive DevSecOps strategy, architect and automate secure CI/CD pipelines, and embed security best practices into our cloud-native infrastructure. You will partner closely with engineering, security, and operations teams to enable rapid, compliant, and resilient software delivery at scale.

Responsibilities

DevSecOps Strategy & Roadmap

• Define a multi-year DevSecOps vision and actionable roadmap.
• Identify gaps in current practices and propose improvements in tooling, automation, and processes.
  
  

• Architect, build, and maintain automated pipelines (GitHub Actions, Jenkins, etc.) that integrate security checks (SAST, DAST, dependency scanning).
• Enforce “shift-left” security controls—secret scanning, container image hardening, infrastructure policy as code.
  
  

• Evaluate and introduce next-gen DevSecOps platforms and open-source tools.
• Pilot AI/ML-driven security analytics and self-service guardrails.
• Serve as hands-on expert for complex troubleshooting and incident response.
  
  

• Work with application teams to bake in secure infrastructure as code (Terraform, ARM Templates, Helm).
• Partner with SREs and cloud platform engineers to align security requirements on Kubernetes, serverless, and bare-metal architectures.
• Coach and mentor developers on secure-coding standards and threat modeling.
  
  

• Define security guardrails, policies, and approval workflows to meet PCI-DSS, SOC 2, ISO 27001, or similar frameworks.
• Collaborate with audit teams to validate adherence to regulatory controls.
• Track and remediate security findings through a centralized ticketing and reporting process.
  
  

• Lead migration of build/test/release pipelines from legacy on-prem tools to cloud-native platforms.
• Optimize performance, cost, and security posture in container registries, artifact repositories, and vaults.
  
  

• 12+ years of software development or DevOps experience, with 4+ years focused on DevSecOps.
• Hands-on expertise with GitHub (Actions, Packages), Jenkins, or comparable CI/CD platforms.
• Proficiency in scripting/programming (Python, Bash, Go, or similar).
• Strong knowledge of container orchestration (Kubernetes, Docker) and service mesh fundamentals.
• Experience with infrastructure as code (Terraform, CloudFormation, ARM Templates, Helm).
• Familiarity with security scanning tools (SonarQube, Semgrep and Snyk) and remediation workflows.
• Deep understanding of cloud security controls in AWS, Azure, or GCP.
• Excellent communication skills, with experience presenting to both technical and executive audiences.
  
  

• Certifications: CKA/CKAD, Certified DevSecOps Professional (CDP), or CISSP.
• Experience with policy-as-code frameworks (Open Policy Agent, HashiCorp Sentinel).
• Familiarity with SIEM, SOAR, and threat-intelligence platforms.
• Prior leadership or people-management experience.