The DevSecOps Engineer is responsible for designing, developing, and executing DevSecOps practices that seamlessly integrate Development, Security, and Operations. The primary objective is to guarantee the construction and deployment of secure, reliable, and fast systems and applications, achieving an optimal balance between operational efficiency and stringent cybersecurity requirements.
Key Responsibilities & Periodic Tasks- CI/CD Pipeline Architecture: Design, implement, and maintain continuous integration and continuous delivery (CI/CD) pipelines with embedded, automated security gates.
- Deployment Automation: Automate deployment, testing, and system monitoring processes using industry-standard DevOps tools (e.g., Jenkins, GitLab CI/CD, Azure DevOps).
- Security Integration: Seamlessly integrate cybersecurity validation tools into the software development lifecycle (SDLC), specifically Static & Dynamic Application Security Testing (SAST/DAST) and source code analysis.
- Infrastructure Management: Monitor cloud and hybrid infrastructure setups, ensuring absolute alignment with organizational security benchmarks and compliance standards.
- Containerization & Orchestration: Manage containerized environments and enterprise orchestration platforms (Kubernetes, Docker).
- Infrastructure as Code (IaC): Contribute to and implement scalable IaC strategies utilizing automation tools such as Terraform and Ansible.
- Performance & Vulnerability Monitoring: Oversee system performance, track resource utilization, and ensure early identification, isolation, and remediation of security vulnerabilities.
- Cross-Functional Collaboration: Partner closely with software development, cybersecurity, and core infrastructure teams to guarantee flawless component integration.
- Reporting & Optimization: Generate periodic operational reports covering system health, security compliance metrics, and deployment delivery performance. Stay current with emerging DevSecOps trends to continuously mature the ecosystem.
- Continuous monitoring of software releases, builds, and live deployment cycles.
- Measurable optimization and throughput efficiency of automated pipelines.
- Documentation of all infrastructure/application changes, patches, and version releases.
- Adherence to strict incident response and technical support resolution metrics defined in the tender’s Service Level Agreement (SLA).
Requirements
- Bachelor’s degree in Information Technology, Software Engineering, Computer Science, or a closely related technical field.
- Minimum of 3+ years of proven, hands-on experience in DevOps engineering, operations architecture, or systems development.
- Robust knowledge of Source Code Management (SCM) systems (Git, GitHub, GitLab).
- Practical experience managing container environments and enterprise cloud infrastructures (AWS, Azure, GCP).
- Foundational mastery of application security, network security, and local/international compliance frameworks (e.g., Saudi NCA standards, ISO 27001, NIST).
Preferred Professional Certifications:
- Certified Kubernetes Administrator (CKA)
- AWS Certified DevOps Engineer / Azure DevOps Engineer Expert
- DevSecOps Foundation (or equivalent validation)
- Certified Ethical Hacker (CEH) or CompTIA Security+ (to validate the cybersecurity focus)
Benefits
- Medical Insurance
- Social Insurance
- Iqama Issuing
- Air tickets
Skills Required
- Bachelor's degree in Information Technology, Software Engineering, Computer Science, or related field.
- Minimum of 3+ years hands-on experience in DevOps engineering, operations architecture, or systems development.
- Experience designing, implementing, and maintaining CI/CD pipelines (Jenkins, GitLab CI/CD, Azure DevOps).
- Knowledge of Source Code Management systems (Git, GitHub, GitLab).
- Experience managing container environments and orchestration platforms (Kubernetes, Docker).
- Practical experience with enterprise cloud infrastructures (AWS, Azure, GCP).
- Experience implementing Infrastructure as Code and automation (Terraform, Ansible).
- Foundational mastery of application security, network security, and compliance frameworks (Saudi NCA standards, ISO 27001, NIST).
- Preferred certifications: Certified Kubernetes Administrator (CKA); AWS Certified DevOps Engineer or Azure DevOps Engineer Expert; DevSecOps Foundation; CEH or CompTIA Security+.
What We Do
DeepSource stands as a trusted partner for businesses seeking cutting-edge AI services in computer vision, natural language processing, and predictive analytics. With a particular focus on Arabic NLP and ChatGPT bot development, DeepSource is dedicated to empowering companies with groundbreaking solutions that streamline operations, optimize workflows, and enhance user experiences. Our commitment to excellence is evident in our approach to addressing a wide range of AI needs, from hiring top talent and managing end-to-end AI projects to providing tailored consulting and comprehensive training programs. DeepSource's team of experts is equipped with extensive knowledge and experience in various AI technologies, which enables them to develop and deploy advanced solutions across multiple industries. Our adaptive strategies and innovative methodologies allow businesses to stay competitive in today's rapidly evolving digital landscape
