DevSecOps Engineer
Share
Job Location:
Monthly Salary:
Posted on:
2 days ago
Vacancies:
1 Vacancy
Job Summary
Overview :
TekWissen is a global workforce management provider throughout India and many other countries in the world. The job opportunity described below is for one of our clients who has developed a core competence in creating and deploying cost-effective capabilities using an offshore-centric business model.
Position: DevSecOps Engineer
Location: Vadodara
Job Type: Full time
Work Type: Onsite
Work Type: Onsite
Job Description:
Key Responsibilities:
- Own the overall architecture across User & Access Control Plane Data Plane Security & Crypto and Observability layers.
- Define and enforce zero-trust multi-tenant platform architecture and design standards.
- Architecture decisions for Kubernetes (RKE2) API gateways object storage key management and replication.
- Ensure platform alignment with FIPS 140-3 NIST 800-57 / 800-171 and ISO 27001 requirements.
- Review and approve HSM KMIP Vault and cryptographic architecture designs.
- Design and deploy FIPS 140-3 Level 3 compliant HSM clusters.
- Implement key lifecycle management aligned with NIST 800-57 standards.
- Integrate HashiCorp Vault (Transit) KMIP v1.4 and PKCS#11 workflows.
- Implement multi-party authorization (MPA) for sensitive cryptographic operations.
- Design tamper-evident audit logging and compliance pipelines.
- Deploy and operate production RKE2 Kubernetes clusters.
- Implement infrastructure-as-code using Terraform Helm and ArgoCD.
- Manage certificate automation using cert-manager and Vault PKI.
- Implement secure secret management using External Secrets Operator.
- Support active-active data center deployments and disaster recovery testing.
- Enforce TLS 1.3 mTLS and network isolation standards.
- Design and operate monitoring and logging platforms (Prometheus Grafana ELK/OpenSearch).
- Implement per-tenant audit logging and immutable log storage.
- Support billing usage metering and SLA reporting.
- Map system controls regulatory and compliance frameworks.
- Support audits and compliance assessments.
Requirements
Required Skills & Qualifications:
- Hands-on experience deploying and operating workloads on AWS and Microsoft Azure.
- Experience with cloud-native services such as AWS EKS IAM KMS S3 and Azure AKS Entra ID (Azure AD) Key Vault Blob Storage.
- Deep expertise in cloud-native and distributed system architecture.
- Strong experience with Kubernetes-based platforms and microservices.
- Proven knowledge of zero-trust security models and multi-tenant SaaS platforms.
- Experience designing platforms for regulated or mission-critical environments.
- Hands-on experience with enterprise HSMs (Thales Entrust Fortanix IBM or equivalent).
- Strong understanding of cryptographic protocols (AES-256 TLS 1.3 SHA-256/384).
- Experience operating security systems in regulated environments.
- Strong Kubernetes and GitOps experience.
- Deep understanding of CI/CD IaC and cloud-native operations.
- Experience supporting high-availability mission-critical systems.
- Experience with observability and SIEM platforms.
- Strong understanding of compliance and audit requirements.
- Ability to translate technical controls into compliance evidence.
Years of Experience:
- 5 years of relevant work experience with a reputed organization.
Educational Qualification:
- ME (IT Computer) BE (IT Computer) MCA MSC-IT BCA
Primary Skills:
- Cloud Devops Security Docker kubernets CICD Infrastructure as code Terraform GitOps Grafana
- Certification in Kubernetes.
TekWissen Group is an equal opportunity employer supporting workforce diversity
Key Skills
- ASP.NET
- Health Education
- Fashion Designing
- Fiber
- Investigation
