UST
Website:
ust.com
Job details:
Job Title: Senior DevSecOps Engineer
Location: Pune, India
Experience: 7–9 Years
Employment Type: Full-Time
Role Overview
We are looking for a highly skilled Senior DevSecOps / Cloud Security Engineer with strong expertise in AWS and Infrastructure as Code security. The ideal candidate will have hands-on experience securing cloud-native environments, especially Kubernetes-based workloads, and a proven track record of identifying and remediating vulnerabilities across the stack.
🔧 Key Responsibilities
- Design, implement, and manage secure cloud architectures on Amazon Web Services
- Secure and manage core AWS services such as Amazon EKS, Amazon EC2, Amazon EBS, Amazon S3, Amazon CloudFront, and AWS WAF
- Develop, review, and secure Infrastructure as Code using Terraform
- Integrate and manage security scanning tools such as Checkov, TFSec, and Prisma Cloud
- Identify, prioritize, and remediate vulnerabilities across cloud and IaC environments
- Implement best practices for IAM, network security, encryption, and logging
- Collaborate with DevOps, engineering, and product teams to embed security into CI/CD pipelines
- Translate security requirements into actionable engineering tasks and drive implementation
Required Skills & Qualifications
- 7–9 years of experience in Cloud Security / DevSecOps / DevOps roles
- Strong hands-on experience with AWS core services and security best practices
- Deep expertise in Kubernetes security, especially in Amazon EKS
- Proven experience writing and securing Terraform code
- Hands-on experience with cloud and IaC security tools (e.g., Checkov, TFSec, Prisma Cloud)
- Strong understanding of security fundamentals (IAM, network security, encryption, compliance)
- Experience with vulnerability remediation and patch management
- Excellent communication and stakeholder management skills
Nice to Have
- AWS Certifications such as AWS Certified Security – Specialty
- Experience with container security tools and Kubernetes runtime protection
- Familiarity with DevSecOps automation and policy-as-code frameworks
Click on Apply to know more.