Senior DevSecOps Engineer

Job Title: Senior DevSecOps Engineer

Type:
Full-time

Job Summary:

We are seeking a highly skilled
Senior DevSecOps Engineer
to lead and enhance our CI/CD processes, with a focus on secure, efficient, and reliable delivery pipelines across
Salesforce
,
MuleSoft
, and
Oracle Fusion
platforms.

This role is pivotal in integrating security best practices into every phase of the development lifecycle, ensuring compliance with
ISO 27001
, and driving automation and scalability through tools like
Jenkins
,
Azure DevOps
, and
Gearset
.

Key Responsibilities:

• Design, implement, and maintain secure and scalable
  CI/CD pipelines
  for Salesforce, MuleSoft, and Oracle Fusion platforms.
  
  
• Integrate
  DevSecOps
  best practices into development workflows, embedding security controls, checks, and automation throughout.
  
  
• Manage and configure
  Azure DevOps
  ,
  Jenkins
  ,
  Gearset
  , and other relevant tools for version control, deployment, and release management.
  
  
• Conduct
  penetration testing
  ,
  OWASP-based
  security reviews, and risk assessments on applications and environments.
  
  
• Collaborate with Development, QA, and Security teams to ensure secure coding practices and compliance with
  ISO 27001
  and other relevant frameworks.
  
  
• Implement and monitor security solutions across environments (e.g., SAST/DAST tools, vulnerability scanners, audit logs).
  
  
• Generate clear, actionable reports and dashboards summarizing DevSecOps KPIs, vulnerabilities, and remediation actions.
  
  
• Present findings and recommendations to technical and non-technical stakeholders with clarity and impact.
  
  
• Lead incident response and root cause analysis for pipeline or security-related issues.
  
  

Required Qualifications:

• 5+ years of experience in DevOps/DevSecOps engineering roles.
  
  
• Proven experience with
  Salesforce
  ,
  MuleSoft
  , and
  Oracle Fusion
  in a CI/CD context.
  
  
• Expertise with
  Jenkins
  ,
  Azure DevOps
  ,
  Gearset
  , Git, and related DevOps toolchains.
  
  
• Strong knowledge of application and cloud security principles,
  OWASP Top 10
  , secure SDLC.
  
  
• Experience conducting
  penetration tests
  , vulnerability assessments, and remediation strategies.
  
  
• Familiarity with
  ISO 27001
  , SOC 2, or other regulatory frameworks.
  
  
• Excellent scripting and automation skills (e.g., Python, Bash, PowerShell, YAML).
  
  
• Strong analytical and reporting skills with the ability to communicate technical details to non-technical audiences.
  
  
• Excellent written and verbal communication skills in English.
  
  

Preferred Qualifications:

• Certifications such as
  Certified DevSecOps Engineer
  ,
  OSCP
  ,
  CISSP
  , or
  ISO 27001 Lead Implementer
  .
  
  
• Experience with Salesforce DX, MuleSoft Anypoint Platform, Oracle Fusion Middleware.
  
  
• Knowledge of containerization and orchestration tools (Docker, Kubernetes) is a plus.
  
  

Why Join Us?

• Play a key role in shaping secure development pipelines for enterprise-critical platforms.
  
  
• Work in a fast-paced, forward-thinking environment alongside experienced QA and DevOps teams.
  
  
• Lead the way in advancing our compliance, security, and automation strategies.
  
  
• Grow your career with long-term opportunities in a U.S.-based company.
  
  
• Enjoy benefits and the stability of a long-term contract.
  
  
• Competitive salary in USD