Role Overview
Opexor is looking for an experienced DevSecOps Architect to lead the architecture and technical design of an enterprise DevOps and DevSecOps implementation for a regulated financial services environment.
The role will define the end-to-end DevSecOps architecture across Azure DevOps Services, repositories, CI/CD pipelines, security gates, artifact management, approval workflows, hybrid deployment zones, SIEM, ITSM, vulnerability management, and compliance evidence. The architect will ensure the solution is secure, auditable, scalable, and aligned with banking-grade governance expectations.
Role Overview
The DevSecOps Security and Quality Engineer is responsible for implementing and supporting the secure delivery controls across GitLab Security, SonarQube, DAST, IAST integration, signed image workflows, and evidence-driven release gates.
Key Responsibilities
- Configure GitLab Security features for SAST, secret detection, dependency scanning, and container scan integration
- Implement SonarQube code quality, reliability, duplication, and coverage gates
- Configure GitLab DAST against live test targets and support release-readiness scan execution
- Integrate the approved IAST tool into runtime validation workflows and evidence collection
- Support image signing, signature verification, and release gate enforcement
- Tune scan policies, manage false positives, support approved exceptions, and maintain evidence for auditability
- Support security and quality reporting during implementation and managed services
-
Required Skills and Experience
- 6+ years of overall experience in DevSecOps, application security, or software quality engineering
- 3+ years of hands-on experience with CI/CD-integrated security or quality tooling
- Strong experience with static and dynamic testing in modern delivery pipelines
- Strong experience with SonarQube or equivalent code quality tooling
- Experience integrating security findings and quality gates into release workflows
- Familiarity with container security, signed software supply chain controls, and secure SDLC practices
Required Certifications
- GitLab Certified Security Specialist
- GitLab Certified CI/CD Associate
- Relevant application security certifications such as CSSLP, GWAPT, CEH, or similar preferred
Expected Deliverables
- Configured DevSecOps gate model across environments
- SonarQube quality profiles and quality gates
- DAST execution model and IAST integration pattern
- Signed image and release verification controls
- Security and quality evidence model for UAT, go-live, and managed services