DevSecOps Lead – Cloud Security
Are you a seasoned Cloud Security and AI Test Engineer ready to elevate security standards? Apply Now!
Working with one of our top financial clients, this role calls for a DevSecOps Lead – Cloud Security . This position involves developing and automating compliance validation frameworks across multi-cloud environments like GCP, Azure, and AWS, integrating AI-powered testing solutions to ensure security and regulatory compliance for a major banking organization.
Responsibilities
- Design, develop, and maintain AI-driven automated test frameworks for cloud compliance policies across GCP, Azure, and AWS environments.
- Implement AI-based test environments using Azure Foundry and Azure ML for realistic cloud mock setups, including network and IAM configurations.
- Use Azure AI Search, Azure OpenAI, and Azure Machine Learning to build intelligent routines for policy compliance prediction and remediation recommendations.
- Develop comprehensive positive, negative, and edge case tests to validate policy enforcement logic.
- Maintain a library of test suites and ensure traceability between compliance requirements and validation artifacts.
- Collaborate with policy developers, security architects, and cloud service owners to understand expected behaviors and failure scenarios.
- Integrate AI-assisted compliance validation into CI/CD pipelines using GitHub Actions and workflows with scripting efficiencies from GitHub Copilot.
- Automate security scans and validation of terraform deployments with Python scripts.
- Embed automated compliance checks in DevSecOps workflows, validating enforcement of banking cloud security policies.
- Work with security, DevSecOps, and governance teams to define, enforce, and validate cloud security controls aligned with industry standards such as NIST, ISO 27001, and SOC 2.
- Implement and test logging and monitoring solutions for real-time compliance violation detection.
- Automate the generation and validation of compliance reports using tools like SonarQube, Wiz.IO, Splunk, Dynatrace, and AppOmni for audit readiness.
Desired Skill-Set
- 8+ years of experience in Cloud Security, DevSecOps, AI, or Cloud Engineering roles.
- 3+ years in technical leadership positions.
- Strong expertise in GCP, Azure, and AWS cloud environments.
- Proficiency with Jira and Confluence.
- Skilled in Python development.
- Experience with CI/CD pipelines.
- Proficient in Terraform and Infrastructure as Code tools.
- Excellent written and verbal communication skills.
- Strong interpersonal skills and ability to work independently or within a team.
- Demonstrated attention to detail and self-motivation.
Nice to Have
- Cloud or DevSecOps engineering certifications.
- Experience with container security and Kubernetes policy enforcement.
- Hands-on knowledge of HashiCorp Sentinel, Azure Policy, Wiz Policy, GCP Organization Policy, Open Policy Agent, or Kubernetes.
- Familiarity with Helm, ARM, JSON, YAML, and Rego.
- Prior experience working in banking or financial institutions.
BeachHead is an equal opportunity agency and employer. We advocate for our candidates and welcome applicants regardless of race, color, religion, national origin, sex, age, or physical or mental disability. BeachHead or our clients may use technology-enabled tools, including automation and artificial intelligence (AI), to support parts of the recruitment process such as resume screening, application management, and candidate matching. These tools assist our recruiters and our clients, and do not replace human decision-making. This job posting represents a current or anticipated vacancy. The position may be filled at any time, and the posting may be removed without notice once the role has been filled.