Our client, is a fast growing and well funded startup looking to add to the development team.

About the Role

We are looking for a hands-on DevSecOps Engineer to help us secure, monitor, and maintain our infrastructure and applications. You will be directly involved in implementing security practices, running system checks, and making sure our platforms are reliable, cost-efficient, and safe. This role is ideal for someone who enjoys working across both development and operations, with a strong focus on security.

Key Responsibilities

• Regularly update and maintain system and architecture diagrams.
• Review vulnerabilities and risk lists, follow up on fixes, and track progress.
• Apply infrastructure and cloud security best practices (e.g., principle of least privilege).
• Implement new security improvements (e.g., moving from service accounts to identity federation).
• Run and manage vulnerability assessment & penetration testing (VAPT) cycles.
• Operate and maintain our security compliance platform (Sprinto).
• Set up and manage secure integrations with APIs and SDKs.
• Maintain and update the system status page for transparency.
• Conduct security awareness training for the engineering team.

Requirements

• 4 years of experience in DevOps, Cloud Security, or System Administration.
• Hands-on experience with AWS, Azure, or similar cloud platforms.
• Familiar with vulnerability scanning tools and VAPT processes.
• Working knowledge of APIs, SDKs, and system integrations.
• Good understanding of access control and identity management.
• Comfortable with documentation and diagramming tools.
• Strong troubleshooting skills and a proactive mindset.