The Role
Design and maintain secure AWS environments using Terraform; enforce IAM and network security baselines; build CI/CD with GitHub Actions for serverless and frontend apps; implement observability and automated alerting; author runbooks and SDLC standards; optimize developer tooling including AI-assisted workflows.
Summary Generated by Built In
AHEAD builds platforms for digital business. By weaving together advances in cloud infrastructure, automation and analytics, and software delivery, we help enterprises deliver on the promise of digital transformation.
At AHEAD, we prioritize creating a culture of belonging, where all perspectives and voices are represented, valued, respected, and heard. We create spaces to empower everyone to speak up, make change, and drive the culture at AHEAD.
We are an equal opportunity employer, and do not discriminate based on an individual's race, national origin, color, gender, gender identity, gender expression, sexual orientation, religion, age, disability, marital status, or any other protected characteristic under applicable law, whether actual or perceived.
We embrace all candidates that will contribute to the diversification and enrichment of ideas and perspectives at AHEAD.
As a DevSecOps Engineer, you will work closely with our platform and application engineers to build out robust, secure AWS environments. You won't just be maintaining pipelines; you will be architecting foundational Terraform modules, enforcing strict IAM and network security baselines, and building observability tools to catch security violations before they become incidents.
You will also play a critical role in standardizing our software development life cycle (SDLC) and optimizing developer tooling, including configuring agentic workflow standards for AI-assisted development.
Responsibilities
- Infrastructure as Code (IaC): Architect, deploy, and maintain complex AWS environments using Terraform. Consolidate and manage Terraform state files, module composition, and cross-stack resource references.
- Security Engineering & IAM: Enforce least-privilege IAM policies, manage strict Security Group routing, and implement defense-in-depth security features (e.g., CloudFront WAF Web ACLs, Content Security Policy (CSP) violation reporting endpoints).
- CI/CD & Automation: Design and optimize GitHub Actions workflows for continuous integration and continuous deployment. Manage complex build pipelines for serverless architectures (Python/Lambda) and frontend single-page applications.
- Observability & Incident Response: Build CloudWatch dashboards, configure metric filters, and set up automated alerting for operational and security events. Author comprehensive deployment guides, operational runbooks, and disaster recovery processes.
- Developer Enablement: Establish and maintain SDLC standards. Optimize local developer environments and AI-assisted tooling configs (e.g., Cursor rules, dev containers) to reduce token overhead and enforce secure coding practices.
Qualifications
- Experience: 5+ years in DevOps, Cloud Engineering, or DevSecOps roles.
- Cloud Platform: Deep expertise in AWS, specifically with serverless computing (Lambda, API Gateway), networking/routing (CloudFront, WAF, VPCs), and event-driven architecture (EventBridge).
- Infrastructure as Code: Advanced proficiency with Terraform. You should be comfortable managing complex state migrations, module extractions, and zero-drift deployments.
- Security-First Mindset: Strong understanding of AWS IAM (custom policies, service roles, boundary policies), network security, and application-layer protections like WAF and CSP headers.
- CI/CD Tooling: Extensive experience building declarative pipelines using GitHub Actions, including custom composite actions and build artifact management.
- Scripting/Languages: Strong scripting skills in Bash and Python. Experience managing Python dependencies (e.g., uv, pip) for serverless packaging.
Why AHEAD:
Through our daily work and internal groups like Moving Women AHEAD and RISE AHEAD, we value and benefit from diversity of people, ideas, experience, and everything in between.
We fuel growth by stacking our office with top-notch technologies in a multi-million-dollar lab, by encouraging cross department training and development, sponsoring certifications and credentials for continued learning.
India Employment Benefits include:
Comprehensive health insurance coverage for employees, with options to extend coverage to dependents
Paid time off and company holidays, along with additional leave benefits as per policy
Flexible work arrangements, supporting work-life balance
Learning and development opportunities to support continuous growth and upskilling
Employee wellness initiatives and programs focused on physical and mental well-being
Retirement and statutory benefits in line with India regulations
Inclusive and people-first culture, with a strong focus on collaboration and ownership
Skills Required
- 5+ years in DevOps, Cloud Engineering, or DevSecOps
- Deep expertise in AWS (Lambda, API Gateway, CloudFront, WAF, VPCs, EventBridge)
- Advanced proficiency with Terraform (state management, module extraction, zero-drift deployments)
- Strong understanding of AWS IAM, custom policies, service roles, boundary policies, and network security
- Extensive experience building declarative CI/CD pipelines using GitHub Actions (including custom composite actions)
- Strong scripting skills in Bash and Python
- Experience managing Python dependencies and serverless packaging (pip and serverless build pipelines)
- Experience building observability and incident response: CloudWatch dashboards, metric filters, automated alerting, runbooks
- Experience designing CI/CD for serverless architectures and frontend single-page applications
- Familiarity with developer enablement tooling, dev containers, and AI-assisted development workflows (e.g., Cursor rules)
AHEAD Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about AHEAD and has not been reviewed or approved by AHEAD.
-
Retirement Support — 401(k) contributions are matched dollar-for-dollar on the first $5,000 each year, with matching made each pay period and immediate 100% vesting. This structure signals above-standard employer support for retirement savings.
-
Affordable Benefits — Medical options include low employee premiums for PPO and HDHP plans, and the HDHP adds employer HSA funding plus a dollar-for-dollar HSA match up to stated amounts. Dental and vision plans list very low per-paycheck costs, helping keep overall healthcare spend manageable.
-
Wellbeing & Lifestyle Benefits — No-cost telemedicine (including virtual mental health when enrolled), free Calm access for the employee and dependents, and an EAP with counseling are included. Company-paid life and disability plus voluntary protections (legal/ID, pet insurance) and other extras round out a comprehensive set of supports.
AHEAD Insights
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
AHEAD builds platforms for digital business. By weaving together cloud infrastructure, intelligent operations, and modern applications, we help enterprises deliver on the promise of digital transformation.
