Lead Software Engineer, DevSecOps, ITC

NIKE, Inc. does more than outfit the world's best athletes. It is a place to explore potential, obliterate boundaries and push out the edges of what can be. The company looks for people who can grow, think, dream and create. Its culture thrives by embracing diversity and rewarding imagination. The brand seeks achievers, leaders and visionaries. At Nike, it’s about each person bringing skills and passion to a challenging and constantly evolving game.

This role is part of the AI, Platform Engineering & DevX (APEX) to lead DevOps area under Self-Service Operational Analytics & Reporting (SOAR) team.

The SOAR team manages Nike’s Business Intelligence platforms, release management and CI/CD, and vendor relationships. The team collaborates with Development, Release Management, L1/L2 support teams, vendors, and the broader engineering organization to standardize platform usage, ensuring secure and seamless developer experiences.

We are seeking a skilled and experienced DevOps Engineer Lead (DevSecOps) to join our Software Engineering team and own the DevOps area for our Business Intelligence Platform applications. In this role, you will lead the design and implementation of secure, scalable, and automated CI/CD pipelines and cloud infrastructure, enabling high-quality and reliable application delivery. You will act as a subject matter expert, providing technical leadership, advisory support, and decision-making across multiple teams. The ideal candidate brings strong hands-on DevOps expertise, deep experience with cloud and container platforms, and a proven ability to embed security best practices throughout the development and deployment lifecycle.

• Extensive hands-on experience designing and operating CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI, or AWS CodePipeline) at enterprise scale.

• Strong expertise in AWS including compute (EC2, ECS, EKS, Lambda), networking (VPC, Route 53, ALB/NLB), IAM, KMS/Secrets Manager, S3, RDS, and cost optimization.

• Deep experience with Infrastructure-as-Code using Terraform and/or Ansible, and proficiency in scripting languages (Python, Bash, Go).

• Proven experience with containerization and orchestration platforms (Docker, Kubernetes, Amazon EKS, ECS, Fargate) for scalable, resilient deployments.

• Ability to integrate security tooling including SAST, DAST, IaC scanning, container scanning, dependency management, and automated vulnerability remediation.

• Strong understanding of security best practices, threat modeling, vulnerability management, and compliance frameworks (e.g., SOC 2, ISO 27001, NIST, PCI-DSS).

• Strong understanding of SRE practices — SLOs/SLIs, error budgets, incident management, and blameless post-mortems.

• Experience with artifact and dependency management tooling (JFrog Artifactory, Nexus, AWS CodeArtifact) and modern Git workflows / branching strategies.

• Experience driving FinOps and cloud cost optimization initiatives (right-sizing, savings plans, tagging strategy).

• Solid grasp of configuration and release management practices, including blue/green, canary, and progressive delivery strategies.

• Familiarity with Business Intelligence and analytics platforms (e.g., Tableau, Cognos, Planning Analytics) and their deployment / operational characteristics is a big plus.

• Excellent communication skills and the ability to engage both technical and non-technical stakeholders.

• Industry certifications such as AWS Certified DevOps Engineer, AWS Certified Solutions Architect, CKA/CKAD, or relevant security certifications (CISSP, CCSP) are highly desirable.

You will lead the design, automation, and continuous improvement of secure CI/CD pipelines and cloud infrastructure that enable fast, reliable, and compliant application delivery. Collaborating with development, architecture, security, and operations teams, you will embed DevSecOps practices end-to-end, troubleshoot complex system issues, and drive infrastructure and tooling improvements. Your leadership will foster innovation, streamline delivery workflows, and align technical strategy with business objectives.

Responsibilities:

• Design, build, and maintain CI/CD pipelines to support continuous integration, delivery, and deployment.

• Build and configure AWS cloud infrastructure using automation and Infrastructure-as-Code approaches.

• Lead the implementation of DevSecOps practices, ensuring security is integrated across pipelines, infrastructure, and applications.

• Establish the DevSecOps charter, operating model, and governance structure for Business platforms.

• Define and enforce security, compliance, and quality gates across CI/CD pipelines in hybrid environments.

• Work with containerization and orchestration platforms (Docker, Kubernetes, Amazon EKS, ECS) to enable scalable and resilient application deployments.

• Collaborate with cross-functional teams (development, architecture, security, and operations) to design and implement end-to-end DevOps solutions.

• Monitor system performance, availability, and reliability; troubleshoot and resolve issues to ensure optimal operation.

• Implement and enforce security best practices to protect infrastructure and applications from threats.

• Establish and operate AWS-native security guardrails (AWS Config, GuardDuty, Inspector, Security Hub) and policy-as-code controls.

• Drive configuration and release management, ensuring consistent and reliable deployments across environments.

• Drive cloud cost optimization through architectural improvements, right-sizing, and AWS Savings Plans / Reserved Instances strategy.

• Continuously evaluate and improve existing tools, pipelines, and processes to enhance efficiency, quality, and delivery speed.

• Develop and maintain technical documentation, runbooks, and guidelines for DevOps processes and systems.

• Provide technical leadership and guidance to team members, contributing to key decisions across multiple teams and workstreams.