DevSecOps Lead

Required Skills & Experience

45 years of experience in DevSecOps Application Security Security Engineering or related roles with at least 2 years in a lead or senior technical role.
Proven experience leading and mentoring security or DevOps engineering teams.
Expert-level hands-on experience with Checkmarx One (SAST) or equivalent enterprise SAST platforms.
Deep experience with DAST tools such as Burp Suite OWASP ZAP or commercial alternatives.
Extensive experience architecting and integrating security tools into Jenkins GitLab CI Azure DevOps or GitHub Actions at enterprise scale.
Strong expertise in container security Kubernetes security and API security.
Hands-on experience designing and implementing secrets management solutions (HashiCorp Vault AWS Secrets Manager Azure Key Vault).
Expert understanding of Secure SDLC OWASP Top 10 SANS Top 25 and enterprise vulnerability management practices.
Deep experience with cloud platforms (AWS Azure or GCP) and cloud-native security controls.
Advanced Infrastructure as Code experience using Terraform CloudFormation Pulumi or Ansible.
Strong experience with Docker Kubernetes Helm and service mesh technologies.
Proficiency with observability and monitoring tools (Prometheus Grafana ELK Splunk).
Strong scripting and automation skills in Python Bash Go or PowerShell.
Experience driving security initiatives in Agile/Scrum and SAFe environments.
Experience with threat modeling and secure architecture reviews.

Preferred Qualifications

Masters degree with 45 years of relevant experience or Bachelors degree with 68 years of experience.
Security certifications such as CISSP CCSP OSCP GWAPT GWEB or cloud security specialty certifications (AWS Security Specialty Azure Security Engineer GCP Professional Cloud Security Engineer).
Cloud or DevOps certifications (CKS CKA AWS DevOps Professional Azure DevOps Engineer Expert).
Experience with container and API security platforms (Aqua Prisma Cloud Sysdig Snyk).
Experience with SIEM platforms (Splunk Sentinel Chronicle) and security orchestration (SOAR).
Experience with zero trust architecture and identity-based security models.
Background in penetration testing or red team activities.
Experience presenting to and influencing executive leadership on security strategy and risk.

Soft Skills

Strong leadership presence with the ability to influence and drive change across teams and organizational boundaries.
Excellent strategic thinking and problem-solving abilities.
Outstanding communication skills with the ability to articulate complex security concepts to technical and non-technical stakeholders.
Proven ability to mentor and develop talent.
Collaborative mindset with experience working in fast-paced high-growth environments.
Ownership mentality with a focus on quality security and continuous improvement.
Ability to balance security requirements with business objectives and delivery timelines.