DevSecOps Engineer – Software Supply Chain Security

Astra North Infoteck Inc.

Job Location:

Toronto - Canada

Monthly Salary: K 10 - 10

Experience Required: 5years

Posted on: 12 hours ago

Vacancies: 1 Vacancy

Job Summary

DevSecOps Engineer

Location: Toronto ON

Hybrid (4 days/week onsite)

Experience Required: 810 years

Skill Category: Digital SecDevOps

Role Overview

The State Street Cyber Security Architecture & Engineering team is seeking a highly skilled DevSecOps / Software Supply Chain Security Engineer to support the enterprise rollout of secure software delivery practices.

This role focuses on securing the software supply chain across CI/CD pipelines artifact management and dependency ecosystems.

Key Responsibilities

Design and implement software supply chain security strategies

Secure artifact sourcing from Maven PyPI and internal registries

Manage Artifactory and artifact governance

Ensure artifact provenance immutability and integrity

Integrate security into CI/CD pipelines

Support Chainguard implementation and trusted image pipelines

Drive DevSecOps adoption across engineering teams

Develop dashboards metrics and governance standards

Required Skills & Experience

812 years of experience in DevOps / DevSecOps (target: 810 years)

Hands-on experience with CI/CD pipelines

Strong understanding of software supply chain security

Experience with Artifactory or Nexus

Knowledge of SLSA (Supply-chain Levels for Software Artifacts) principles

Container security experience (Chainguard preferred)

Cloud experience (AWS and/or Azure)

Experience with Infrastructure as Code (Terraform Ansible Kubernetes)

Essential Skills

DevSecOps

Software Supply Chain Security

CI/CD Security Integration

Artifact Management & Governance

Required Skills:

Top 3 Required Skills: 1. IBM Financial transaction 2. Payment flow 3. Support Modernization Detailed Job Description: Design develop and maintain applications built on IBM Financial Transaction Manager (FTM) to support core payments processing. Contribute to the development of payment flows supporting transaction processing. Build and support integrations between FTM and upstream/downstream systems using enterprise integration patterns. Participate in the design development testing deployment and production support. Troubleshoot and resolve application and integration issues in a complex regulated environment. Collaborate with architecture QA and operations teams to ensure platform stability scalability and performance. Support modernization initiatives and enhancements to existing payment hub capabilities. Produce clear technical documentation and participate in code reviews and knowledge sharing.

DevSecOps Engineer Location: Toronto ONHybrid (4 days/week onsite)Experience Required: 810 yearsSkill Category: Digital SecDevOpsRole OverviewThe State Street Cyber Security Architecture & Engineering team is seeking a highly skilled DevSecOps / Software Supply Chain Security Engineer to support th...