DevOps Engineer - CI/CD & DevSecOps Specialist

At Securonix, we’re on a mission to secure the world by staying ahead of cyber threats, reinforcing all layers of our platform with AI capabilities. Our Securonix Unified Defense SIEM provides organizations with the first and only AI-Reinforced solution built with a cybersecurity mesh architecture on a highly scalable data cloud. Enhanced by Securonix EON’s AI capabilities, our innovative cloud-native solution delivers a seamless CyberOps experience, empowering organizations to scale their security operations and keep up with evolving threats. 

Recognized as a five-time leader in the Gartner Magic Quadrant for SIEM and highly rated on Gartner Peer Insights, our award-winning Unified Defense SIEM provides organizations with 365 days of ‘hot’ data for rapid search and investigation, threat content-as-a-service, proactive defense through continuous peer and partner collaboration, and a fully integrated Threat Detection, Investigation, and Response (TDIR) experience—all within a single platform. Built on a cloud-native architecture, the platform leverages the Snowflake Data Cloud for unparalleled scalability and performance.

Securonix is proud to be a cybersecurity unicorn and featured in CRN's 2024 Security 100 list. Backed by Vista Equity Partners, one of the largest private equity firms with over $100 billion in assets under management, we have a unique advantage in driving innovation and growth. With a global footprint, we serve more than 1,000 customers worldwide, including 10% of the Fortune 100. Our network of 150+ partners and Managed Security Service Providers (MSSPs) enables us to deliver unmatched security solutions on a global scale.

At Securonix, we are driven by our core values and place our people at the heart of everything we do:

• Winning as One Team: We work together with universal respect to achieve aligned outcomes
• Customer Driven Innovation: We innovate to stay ahead of the market and create value for our customers
• Agility in Action: We embrace change and are unified in our purpose and objectives amidst change

Join us as we redefine cybersecurity, innovate fearlessly, and grow together as one team.

Job Title: DevOps Engineer - CI/CD, Automation and DevSecOps Specialist

Job Summary:

We are seeking a highly motivated and experienced DevOps Engineer to join our team and champion a DevSecOps culture. This role will be focused on designing, building, and maintaining our CI/CD pipelines, with a specific focus on secure Java application builds, branching strategies, and automated deployments. The ideal candidate will be proficient in scripting (Python, Bash, and Groovy), have a strong understanding of Jenkins pipeline development, including the use of shared libraries, infrastructure as code, modern DevOps practices, and a security-first mindset. Additionally, a solid understanding of QA automation testing tools is beneficial, and proficiency with Selenium is considered an added advantage. You will play a critical role in enabling our development and QA teams to deliver high-quality, secure software rapidly and reliably.

Key Responsibilities:

• Secure CI/CD Pipeline Development: Design, implement, and maintain robust, automated, and secure CI/CD pipelines using Jenkins and other relevant tools. This includes integrating security scanning and testing tools into the pipeline.
• Secure Java Build Expertise: Optimize and troubleshoot Java application builds, ensuring security best practices (including dependency management, vulnerability scanning), artifact repository management (Nexus, Artifactory) and build performance.
• Secure Branching Strategy Management: Implement and maintain effective and secure branching strategies (e.g., Gitflow, Trunk-Based Development), ensuring secure collaboration between development teams and preventing unauthorized code merges.
• Infrastructure as Code (IaC) with Security: Leverage IaC tools (e.g., Terraform, CloudFormation, Ansible) to automate secure infrastructure provisioning, configuration, and management for our CI/CD environment. This includes implementing security policies and access controls in code.
• Secure Jenkins Pipeline Development with Groovy: Develop complex, efficient, maintainable, and secure Jenkins pipelines using Groovy scripting, that integrate testing, security code quality checks, and automated deployments. This includes the use of shared libraries for reusable pipeline logic.
• Shared Library Development: Develop and maintain reusable Jenkins shared libraries using Groovy to encapsulate common CI/CD logic, promoting consistency and maintainability across pipelines.

• Scripting and Automation for Security: Utilize scripting (Python, Bash, and Groovy) to automate repetitive tasks, enhance CI/CD workflows, integrate security tools, and create custom tools to improve development and security productivity.
• Monitoring and Logging with Security Focus: Implement secure monitoring and logging solutions to proactively identify and address potential security vulnerabilities, performance issues, and malicious behavior in the CI/CD pipelines.
• Security Collaboration: Collaborate closely with security teams, development teams, QA, and other stakeholders to understand their needs, deliver secure solutions, and participate in security reviews.
• Continuous Security Improvement: Continuously identify areas for improvement within our CI/CD processes and infrastructure from a security perspective, and implement security best practices to improve efficiency and reliability.
• Documentation with Security Focus: Create and maintain clear, comprehensive, and security focused documentation for all CI/CD processes, infrastructure, and security controls.
• Vulnerability and Security Assessment: Perform regular vulnerability assessments of the CI/CD infrastructure and application codebase to identify and fix potential weaknesses.
• Threat Modeling: Conduct threat modeling exercises to identify potential security risks in the CI/CD process.
• Troubleshooting with Security Awareness: Troubleshoot issues with the CI/CD pipeline, build processes, deployments, and other areas related to the build system, always with security as a key concern.
• Integrate QA automation tools and frameworks within the CI/CD pipeline, enabling automated testing of new builds.
• Stay up to date with Security: Stay abreast of industry trends and emerging DevOps and security technologies and practices.

Required Qualifications:

• Bachelor's degree in Computer Science, Engineering, or a related field, or equivalent practical experience.
• 5+ years of experience as a DevOps Engineer, specializing in CI/CD and automation.
• Proven experience with implementing DevSecOps best practices in CI/CD pipelines.
• Strong proficiency in Java build processes, dependency management with Maven/Gradle, artifact repositories (Nexus, Artifactory) and experience with secure coding practices.
• Solid understanding of branching strategies, with the ability to implement security controls in branching.
• Extensive experience developing and maintaining complex Jenkins pipelines with built-in security checks, including declarative and scripted pipelines using Groovy.
• Proven experience developing and using Jenkins shared libraries using Groovy.
• Proven experience with infrastructure as code (Terraform, CloudFormation, Ansible) with a security focus.
• Excellent scripting skills in Python, Bash, and Groovy, with the ability to automate security tasks and integrate security tools into the workflows.
• Experience in implementing security scanning tools (e.g., SAST, DAST, SCA).

• Experience with monitoring and logging tools (e.g., Prometheus, Grafana, ELK) with a security perspective.
• Strong understanding of containerization technologies (Docker) and container orchestration (Kubernetes), including secure configurations.
• Experience with cloud platforms (AWS, Azure, GCP), including their security features.
• Excellent problem-solving, analytical, and troubleshooting skills, with a focus on security.

• Strong communication and collaboration skills.
• Experience working with security teams.
• Solid understanding of QA automation testing tools and frameworks.

Preferred Qualifications:

• Experience with microservices architectures.
• Experience with security tools such as vulnerability scanners and penetration testing tools.
• Experience with secret management tools such as HashiCorp Vault.
• Experience with various testing frameworks and their integration into CI/CD pipelines with a focus on security.
• Familiarity with other programming languages (e.g., Go).
• Experience with GitOps and declarative configurations with security focus.
• Relevant certifications (e.g., AWS Certified DevOps Engineer, Certified Kubernetes Security Specialist (CKS)).
• Proficiency with Selenium or other automated testing tools.

Key Skills:

• CI/CD: Jenkins, GitLab CI, CircleCI
• Java Build Tools: Maven, Gradle
• Branching Strategies: Gitflow, Trunk-Based Development
• Security Tools: SAST, DAST, SCA
• Infrastructure as Code: Terraform, CloudFormation, Ansible
• Scripting: Python, Bash, Groovy
• Containerization: Docker
• Container Orchestration: Kubernetes
• Cloud Platforms: AWS, Azure, GCP
• Monitoring & Logging: Prometheus, Grafana, ELK
• Artifact Repositories: Nexus, Artifactory
• Secret Management: Hashicorp Vault, AWS Secrets manager
• Jenkins Shared Library Development with Groovy
• QA automation tools and frameworks.

Benefits: 

As a full-time employee with Securonix, you will be eligible for the following employee benefits:

• Health Insurance with a total sum insured is INR 5,00,000
• Coverage: Self, Spouse, 2 kids, Dependent parents, or parents-in-law
• Personal Accident with total sum insured is INR 10,00,000
• Term Life Insurance with a sum assured for employees is 5 times fixed base pay is covered.

Securonix, Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity, national origin, age, disability, genetic information, marital status, amnesty or status as a covered veteran in accordance with applicable federal, state and local laws. 

Securonix complies with applicable state and local laws governing nondiscrimination in employment in every location where the company has facilities. This policy applies to all terms and conditions of employment, including hiring, placement, promotion, termination, layoff, recall, and transfer, leaves of absence, compensation and training.

Securonix expressly prohibits any form of unlawful employee harassment based on race, color, religion, gender, sexual orientation, national origin, age, genetic information, disability or veteran status. Improper interference with the ability of Securonix employees to perform their expected job duties is absolutely not tolerated.