Devsec Ops Engineer

Capco


Job Location:

Bengaluru - India

Monthly Salary: Not Disclosed
Posted on: 3 days ago
Vacancies: 1 Vacancy

Job Summary

Job Title: DevOps / Observability Engineer (CI/CD & SecOps)

About Us

Capco a Wipro company is a global technology and management consulting firm. Awarded with Consultancy of the year in the British Bank Award and has been ranked Top 100 Best Companies for Women in India 2022 by Avtar & Seramount. With our presence across 32 cities across globe we support 100 clients acrossbanking financial and Energy sectors. We are recognized for our deep transformation execution and delivery.

WHY JOIN CAPCO

You will work on engaging projects with the largest international and local banks insurance companies payment service providers and other key players in the industry. The projects that will transform the financial services industry.

MAKE AN IMPACT

Innovative thinking delivery excellence and thought leadership to help our clients transform their business. Together with our clients and industry partners we deliver disruptive work that is changing energy and financial services.

#BEYOURSELFATWORK

Capco has a tolerant open culture that values diversity inclusivity and creativity.

CAREER ADVANCEMENT

With no forced hierarchy at Capco everyone has the opportunity to grow as we grow taking their career into their own hands.

DIVERSITY & INCLUSION

We believe that diversity of people and perspective gives us a competitive advantage.

Looking for Immediate joiners only

Job Title: Devsec Ops Engineer

Location: Bengaluru/ Pune

Experience: 8yrs

Job Summary

DevSecOps Engineer skill set
Must-have (non negotiables)
CI/CD engineering: Strong hands-on with pipelines (e.g. Jenkins / GitLab CI / Azure DevOps) build/release patterns artefact versioning promotion strategies.
Cloud container platform: Solid experience with Kubernetes and Docker plus at least one major cloud (AWS/Azure/GCP) including IAM concepts.
Infrastructure as Code (IaC): Terraform (preferred) and/or CloudFormation/Bicep; ability to build reusable modules and manage state safely.
Security in the SDLC: Practical implementation of SAST SCA DAST secrets scanning container image scanning; ability to set quality/security gates in pipelines.
Vulnerability management: Triage findings prioritise by risk drive remediation with dev teams and track to closure.
Observability & operations: Logging/metrics/tracing basics; incident support; familiarity with tools like Splunk/ELK Prometheus/Grafana OpenTelemetry.
Scripting & automation: Bash Python (or equivalent) to automate repetitive tasks and integrate tools.
Secure configuration & hardening: Baselines for OS/container/K8s; RBAC network policies least privilege.
Source control & collaboration: Git workflows code reviews branching strategies and working in agile delivery teams.
Communication & influence: Can coach developers write clear runbooks and drive adoption without being the security police.
Payments Background basic understanding of the payments flows
Good-to-have (differentiators)
Policy-as-code: OPA/Gatekeeper Kyverno; automated compliance controls.
Threat modelling & secure design: STRIDE-style thinking; secure architecture reviews.
Secrets management: HashiCorp Vault / cloud-native secrets; rotation patterns.
Advanced K8s security: Pod Security Standards admission controllers service mesh security (mTLS) runtime security (Falco).
Supply chain security: SBOMs (CycloneDX/SPDX) provenance (SLSA) signing (Cosign) dependency pinning.
Platform engineering: Internal developer platform patterns golden paths reusable templates.
Regulated environment experience: Evidence collection audit support control mapping (without turning everything into paperwork).
Certifications (optional): CKAD/CKA Security AZ-500/AWS Security Terraform Associate.

If you are keen to join us you will be part of an organization that values your contributions recognizes your potential and provides ample opportunities for growth. For more information visit . Follow us on Twitter Facebook LinkedIn and YouTube.


Required Experience:

IC

Job Title: DevOps / Observability Engineer (CI/CD & SecOps)About UsCapco a Wipro company is a global technology and management consulting firm. Awarded with Consultancy of the year in the British Bank Award and has been ranked Top 100 Best Companies for Women in India 2022 by Avtar & Seramount. With...

About Company

Capco is a global management and technology consultancy dedicated to the financial services and energy industries.

View Profile View Profile