Senior DevSecOps Engineer - Platform Release Engineering

Senior DevSecOps Engineer, Platform Release Engineering (6+)

Role summary:

Release and platform-safety engineer responsible for CI/CD, security scanning, deployment hygiene, observability, secrets management, rollback, release gates, and operational readiness for platform services.

Key responsibilities:

• Build and maintain CI/CD pipelines for backend services, frontend surfaces, tests, scans, packaging, and release workflows.
• Implement security checks, dependency scanning, secrets scanning, code scanning, container scanning, and policy-based release gates.
• Establish observability baselines: logs, metrics, traces, alerts, runbooks, release evidence, and incident handoff patterns.
• Define and automate deploy/rollback workflows for containerized services across approved runtime environments.
• Partner with engineers to make tests, release evidence, operational documentation, and rollback posture part of every delivery path.
• Maintain release checklists, incident runbooks, environment hygiene, and operational readiness standards.

Required technical skills:

• Strong CI/CD experience, preferably with GitHub Actions or comparable systems.
• Container experience using Docker and containerized runtime environments such as Kubernetes, OpenShift, or comparable enterprise container platforms.
• Infrastructure-as-code experience with Terraform, Pulumi, CDK-style tools, or equivalent.
• Security scanning experience covering secrets, dependencies, source code, containers, and release-blocking rules.
• Observability experience with logs, metrics, tracing, alerting, incident runbooks, and rollback procedures.
• Strong understanding of release gates, deployment hygiene, environment separation, and operational support for platform services.

AI / LLM readiness and prompt-coding expectations:

• Comfort using AI-assisted coding tools for DevSecOps work while preserving review, audit, and security discipline.
• Anthropic Academy, Claude Code, OpenAI, or comparable AI tooling training is preferred; equivalent demonstrated knowledge is acceptable.
• Prompt coding is helpful but not a hard gate for this role.
• Should understand how AI-generated code or configuration should be reviewed, scanned, logged, and promoted safely.

Preferred skills:

• OpenTelemetry or comparable telemetry standards.
• Policy-as-code or release gate automation experience.
• Experience supporting internal platforms, developer platforms, or governance-heavy delivery environments.
• Experience with release evidence, immutable artifacts, checksums, signed releases, audit-friendly deployment records, or secure software supply-chain practices.
• Familiarity with OWASP, SAST, DAST, SCA, secrets scanning, and container/IaC scanning patterns.

First 90-day outcomes:

• Deliver baseline CI/CD pipelines for backend and frontend repositories.
• Implement the first security scan and release-gate workflow.
• Create observability baseline and rollback runbook for the first platform service.
• Create release evidence checklist and integrate it into the review and promotion workflow.

• Sign In
• Create Account

Sign in

To continue your application

Sign in with Google

Sign in with Linkedin

---

or continue with email

Email address

Password

Forgot your password?

Resume or CV

Improve your chances of getting an interview

Drag & drop or browse

.pdf, .doc, .docx (Max 10MB)

Continue →

By continuing you agree to our Terms & Privacy Policy.