DevSecOps Architect

Role Summary

Define target-state DevSecOps architecture and golden path standards across Azure DevOps Server, security controls, GitOps deployments, test gates, and monitoring, ensuring scalable and auditable delivery.

Key Responsibilities

·        Produce reference architecture: CI/CD, artifact lifecycle, environment strategy, approvals, and auditability.

·        Design, deploy, and maintain secure, high-availability Kubernetes clusters (K8s) across private cloud environments.

·        Define pipeline patterns with Fortify gates, SBOM/SCA expectations, and Sigstore signing/verification.

·        Define IaC standards using Terraform and configuration standards via Ansible.

·        Design GitOps model using Argo CD into OpenShift/Kubernetes, including multi-environment promotion.

·        Define monitoring architecture and operational readiness aligned with AppDynamics/BMC/Azure Monitoring.

·        Lead adoption waves and deprecate non-compliant delivery paths.

Collaborate with security and testing teams to foster a DevOps culture, providing technical mentorship to engineers and smooth integrations with other parties

Requirements

Required Experience

10–15+ years overall; 5+ years in platform/DevSecOps architecture. Government/regulatory sector experience is a plus.

Technical Skills

Enterprise DevSecOps platform design, secure supply chain, policy-as-code concepts, and strong K8s/OpenShift architecture knowledge.

Soft Skills

Strategic thinking, stakeholder alignment, pragmatic trade-offs, adoption leadership, and strong documentation.

Core Skills / Tooling

Azure DevOps Server, JFrog Artifactory, Fortify, HashiCorp Vault, Terraform, Ansible, OpenShift/Kubernetes, Argo CD, Sigstore, OpenText Service Virtualization, UFT One, UFT Digital Lab, LoadRunner, and monitoring (AppDynamics/BMC/Azure Monitoring).