We are seeking a DevSecOps Engineer who can strengthen secure software delivery by embedding security, automation, and operational resilience into the development lifecycle. This role requires someone who can work independently with engineering, infrastructure, cyber security, and vendor teams to design secure CI/CD pipelines, manage cloud and container platforms, implement infrastructure as code, and improve observability and incident readiness. The ideal candidate balances delivery timelines with security and compliance needs, while creating reusable patterns that can be adopted across the ministry family. Primary Responsibilities Secure Platform Delivery Design, build, and maintain secure CI/CD pipelines that support application delivery across multiple technology stacks Implement security controls early in the software development lifecycle, including static analysis, dependency scanning, secret detection, container scanning, and policy checks Automate infrastructure provisioning and configuration using infrastructure as code tools such as Terraform Ensure cloud, container, and deployment platforms are configured securely, consistently, and in line with government compliance requirements Security Automation & Governance Translate security and compliance requirements into automated guardrails that reduce manual review effort and improve consistency Define reusable pipeline templates, deployment patterns, and security baselines that can be adopted by multiple application teams Work with cyber security teams to support vulnerability management, remediation tracking, audit readiness, and risk acceptance processes Document security patterns, operational procedures, and lessons learned to enable consistent adoption across the ministry family Reliability, Observability & Incident Readiness Implement monitoring, logging, alerting, and operational dashboards to improve system visibility and response time Support incident response, root cause analysis, and post-incident improvements for application and platform issues Improve deployment reliability through automated rollback, release controls, environment consistency, and configuration management Balance security, reliability, delivery speed, and operational effort when recommending platform or process changes Minimum Qualification Requirements The proposed candidate should meet the following requirements: 3+ years of relevant experience in DevOps, DevSecOps, cloud engineering, platform engineering, or infrastructure automation Hands-on experience designing and operating CI/CD pipelines using tools such as GitHub Actions, GitLab CI, or equivalent platforms Strong experience with infrastructure as code using Terraform, CloudFormation, Ansible, or similar tools Familiarity with cloud and container platforms such as AWS Government Commercial Cloud (GCC) environments Understanding of secure software delivery practices, vulnerability scanning, secrets management, identity and access management, network security, and logging/monitoring Knowledge of security scanning and compliance tools including SonarQube, Fortify on Demand, Nexus IQ, CloudSCAPE, ABLR, CAM, and VMS Familiarity with government security frameworks, data classification and handling requirements, encryption and key management, vulnerability management, security monitoring, and incident response procedures Familiarity with agile development methodologies Required Assessment Candidates are required to do a Govtech DevOps assessment before interview Preferred Certification AWS Certified DevOps Engineer