Job Title: Sr. AEM DevSecOps Engineer
Location: Remote (India)
Development Center: Ahmedabad, Gujarat, India
Headquarters: Dallas, USA
Experience: 5+ years
Hands-on Senior Engineer responsible for platform security, compliance, audit remediation, and secure DevOps practices for the Adobe Experience Manager (AEM) Cloud Service platform. This is a deeply technical role — you will be expected to read and analyze code, debug to root cause, and make secure-by-design decisions rather than delegate them. You will work closely with internal security, compliance, and engineering teams to keep the platform secure, reliable, and compliant, while acting as a credible security partner to project teams and US-based stakeholders.
Key Responsibilities — Platform Security- Remediate platform-level vulnerabilities surfaced by security assessments, scanning tools (Snyk, SAST/DAST), and CVE reports.
- Triage, prioritize, and resolve security issues within defined SLAs.
- Implement security improvements across AEM Dispatcher, Cloudflare CDN, Adobe Cloud Manager, and application configurations.
- Develop long-term fixes for recurring issues — CSP, secrets management, and code security.
- Conduct project-level security reviews and champion secure-by-design practices.
- Address security and compliance audit findings and ensure timely remediation.
- Manage IAM — user provisioning, deprovisioning, and access reviews across AEM environments.
- Maintain centralized audit logs, retention policies, and periodic audit reviews.
- Support internal and external audits by gathering evidence and ensuring standards compliance.
- Establish processes and tooling for recurring platform audits.
- Implement and maintain security controls within CI/CD pipelines (SAST, DAST, dependency scanning).
- Manage Adobe Cloud Manager pipelines, environment access, and secure deployment practices.
- Implement secure secrets and credential management — rotation and least-privilege access.
- Support source code management, CI/CD governance, and repository migration using GitHub.
- Monitor vulnerabilities, audit logs, and compliance status.
- Support incident response, investigation, and root cause analysis.
- Collaborate with internal security, compliance, engineering, and infrastructure teams.
- Work with external technology partners and vendors on security best practices and platform improvements.
- 5+ years in DevSecOps, Security Engineering, or security-focused DevOps.
- 2+ years hands-on with Adobe Experience Manager (AEM) Cloud Service.
- Strong experience with CI/CD tools such as GitHub Actions, Jenkins, or similar.
- Hands-on with Snyk, SAST/DAST tools, dependency scanning, and Content Security Policy (CSP).
- Experience configuring and managing Cloudflare CDN, WAF, and edge security.
- Knowledge of IAM — provisioning, deprovisioning, and access certification.
- Experience supporting security audits and compliance programs.
- Proficiency in scripting languages such as Python, Bash, Java, or JavaScript.
As a senior engineer, you set the security bar for the platform. You should be comfortable owning decisions, guiding mid-level engineers informally, being accountable to the client, and explaining security trade-offs clearly to non-security audiences. Seniority here means judgment and ownership, not just years.
Communication & Client-Facing ExpectationsThis role works directly with US-based clients and stakeholders. Strong communication is a core requirement, not a nice-to-have:
- Fluent, clear written and spoken English, with the ability to explain technical concepts to both technical and non-technical audiences.
- Confident, articulate verbal communication suited to live client conversations, demos, and calls — neutral, easy-to-follow delivery that holds up across US time-zone meetings.
- Active listening: ability to draw out what a client actually needs (often unstated), ask the right clarifying questions, and translate ambiguity into a clear plan.
- Professional, composed presence on calls, with the maturity to manage expectations, disagree respectfully, and keep conversations productive without shutting them down.
We care about how people work, not only what they ship. The engineers and analysts who do best at Solvative tend to share a few traits:
- Ownership without ego — they take end-to-end responsibility and raise the people around them rather than guarding knowledge.
- Curiosity and depth — they can explain why they made a choice, not just what they used.
- Directness balanced with empathy — honest, kind communication with teammates and clients alike.
- A bias toward clarity — they turn messy, ambiguous requirements into something reliable and well-documented.
- Top-of-the-line Apple laptops for increased mobility and better productivity.
- Medical insurance for all permanent employees.
- The opportunity to work with an organization that believes in investing in its employees’ growth.
- An informal work environment that lets you have fun while being productive.
- Lots of fun activities: we take over a nearby restaurant every last Friday of the month, tickets to all Marvel movies for the entire team, company picnics, and more!
Skills Required
- 5+ years in DevSecOps, Security Engineering, or security-focused DevOps
- 2+ years hands-on with Adobe Experience Manager (AEM) Cloud Service
- Experience with CI/CD tools such as GitHub Actions or Jenkins
- Hands-on experience with Snyk, SAST/DAST tools, and dependency scanning
- Experience implementing and managing Content Security Policy (CSP)
- Experience configuring and managing Cloudflare CDN, WAF, and edge security
- Knowledge and experience with IAM provisioning, deprovisioning, and access reviews
- Experience supporting security audits and compliance programs
- Proficiency in scripting languages such as Python, Bash, Java, or JavaScript
- Fluent written and spoken English; confident client-facing communication
What We Do
The Human Centered Full Stack Agency. Solvative is a full-stack software development company that is committed to building user-centric products for our clients. This includes everything from idea conception to user experience, design, engineering, and bringing about the transformation your organization needs








