Cloud DevSecOps Engineer

Robusta Studio

Job Description

Roles & Responsibilities

Desired Candidate Profile

1. CI/CD Pipeline & DevSecOps

• Design, build, and secure CI/CD pipelines using GitHub Actions.
• Integrate automated security testing (SAST/DAST) using SonarQube and related tools.
• Implement and manage GitOps workflows for continuous delivery using ArgoCD.

2. Cloud Infrastructure & Automation

• Design, build, and secure cloud infrastructure on OCI and GCP using Terraform.
• Automate configuration and security hardening tasks using Ansible.
• Develop and maintain automation scripts and perform system administration using Bash.
• Secure and manage container orchestration platforms including Oracle Kubernetes Engine (OKE) and Google Kubernetes Engine (GKE).

3. QA Automation Enablement

• Collaborate with the QA team to integrate automated test suites into CI/CD pipelines.
• Enable automated execution of QA tests to act as quality gates before deployment.

4. Observability & Monitoring

• Build and manage the enterprise observability and monitoring stack using Splunk, Grafana, and Prometheus.
• Develop dashboards, alerts, and incident response playbooks for performance and security monitoring.

Key Interactions:

• Internal: Infrastructure, Developers, Security Teams
• External: Technology vendors and solution partners (as needed)

Education

• Bachelor s degree in Computer Engineering, Information Technology, or a related field (preferred).

Experience

• 3+ years of hands-on experience in DevOps or Cloud Engineering.
• Proven expertise in DevSecOps principles and Software Development Lifecycle (SDLC).
• Strong proficiency in Bash scripting and automation with Ansible.
• Deep understanding of cloud security architecture and native security services on OCI and GCP.
• Extensive experience with Infrastructure as Code (Terraform).
• Advanced skills in CI/CD design using GitHub Actions and GitOps tools like ArgoCD.
• Hands-on experience in Kubernetes (OKE/GKE) setup and security.
• Practical experience with security scanning tools (SonarQube, SAST, DAST).
• Strong knowledge of observability platforms (Splunk, Grafana, Prometheus).
• Familiarity with automated functional testing frameworks and integration into DevOps pipelines.

Core Competencies:

• Strong analytical and problem-solving skills.
• Attention to detail and focus on security best practices.
• Ability to collaborate effectively across cross-functional teams.
• Excellent communication and documentation skills.
• Continuous learning mindset and adaptability to new technologies.