DevSecOps Architect

Role Summary

Define target-state DevSecOps architecture and golden path standards across Azure DevOps Server, security controls, GitOps deployments, test gates, and monitoring, ensuring scalable and auditable delivery.

Key Responsibilities

• Produce reference architecture: CI/CD, artifact lifecycle, environment strategy, approvals, and auditability.
• Design, deploy, and maintain secure, high-availability Kubernetes clusters (K8s) across private cloud environments.
• Define pipeline patterns with Fortify gates, SBOM/SCA expectations, and Sigstore signing/verification.
• Define IaC standards using Terraform and configuration standards via Ansible.
• Design GitOps model using Argo CD into OpenShift/Kubernetes, including multi-environment promotion.
• Define monitoring architecture and operational readiness aligned with AppDynamics/BMC/Azure Monitoring.
• Lead adoption waves and deprecate non-compliant delivery paths.

Collaborate with security and testing teams to foster a DevOps culture, providing technical mentorship to engineers and smooth integrations with other parties

Requirements

Required Experience

10–15+ years overall; 5+ years in platform/DevSecOps architecture. Government/regulatory sector experience is a plus.

Technical Skills

Enterprise DevSecOps platform design, secure supply chain, policy-as-code concepts, and strong K8s/OpenShift architecture knowledge.

Soft Skills

Strategic thinking, stakeholder alignment, pragmatic trade-offs, adoption leadership, and strong documentation.

Core Skills / Tooling

Azure DevOps Server, JFrog Artifactory, Fortify, HashiCorp Vault, Terraform, Ansible, OpenShift/Kubernetes, Argo CD, Sigstore, OpenText Service Virtualization, UFT One, UFT Digital Lab, LoadRunner, and monitoring (AppDynamics/BMC/Azure Monitoring).