Job Description

We are looking for a highly skilled and passionate DevSecOps Engineer to join our team. In this role, you will be responsible for integrating security practices into the DevOps processes, ensuring that our applications and infrastructure are secure from development to deployment. You will work closely with engineering, security, and operations teams to embed security into the CI/CD pipeline and help build secure, scalable, and resilient systems. The ideal candidate will have a strong background in software development, system administration, and security, with a focus on automation and continuous integration.company.

About the Company

At Greenovative, we’re not just building a company—we’re driving a movement toward net zero and sustainable progress. Our AI-powered platform transforms complex industrial data into real-time, actionable insights, helping companies in manufacturing, energy, and utilities optimize resources, cut costs, and enhance efficiency.

Our Journey

In 2017, we laid the foundation for actionable sustainability. By 2018, our pilot project achieved 15% energy savings, proving our impact in the industry. Over the next two years, we refined our platform and expanded our customer base, setting the stage for global growth. In 2021, we established partnerships across 5+ countries, and by 2023, we secured our first European funding, enabling the release of our Cognitive AI module—a breakthrough tool driving data-powered net-zero progress. With 80+ client installations across 5+ geographies and 10+ global recognitions, we are making a tangible impact worldwide. Our success is powered by a team of innovators, problem-solvers, and changemakers committed to reimagining sustainable practices. If you're passionate about technology, data, and sustainability, and want to be part of a fast-growing, purpose-driven company, explore opportunities with us. Let’s build a smarter, more sustainable future—together.

Technical Skills:

• Strong experience with DevOps tools and methodologies (Jenkins, GitLab, Docker, Kubernetes, Terraform, etc.).
• Expertise in security practices, including vulnerability scanning, threat modeling, and security risk assessment.
• Experience with security tools like static/dynamic code analysis (SonarQube, Checkmarx, etc.) and intrusion detection/prevention systems (IDS/IPS).
• Familiarity with cloud environments (AWS, Google Cloud, Azure) and cloud security best practices.
• Hands-on experience with container security and orchestration tools (Docker, Kubernetes, OpenShift).
• Experience with configuration management tools (Ansible, Chef, Puppet) and infrastructure-as-code practices.
• Understanding of networking, firewalls, VPNs, and access management to secure cloud and on-premise infrastructures.
• Proficiency in scripting languages such as Python, Shell, Bash, or Groovy for automation and custom tool development.
• Familiarity with containerization and serverless architectures.
• Experience with identity and access management (IAM) protocols, including OAuth, SSO, and MFA.

Good to have:

• Certifications in DevSecOps (e.g., Certified DevSecOps Professional, AWS Certified Security Specialty).
• Familiarity with compliance frameworks and regulations (e.g., SOC 2, GDPR, HIPAA, PCI-DSS).
• Experience with automated testing frameworks for security validation (e.g., OWASP ZAP, Burp Suite).
• Knowledge of CI/CD security tools (e.g., Snyk, Aqua Security, HashiCorp Vault).
• Experience with monitoring and alerting tools like Prometheus, Grafana, or ELK stack.
• Exposure to serverless security, microservices, and cloud-native application security.

Roles and Responsibilities:

• Embed security practices within the DevOps lifecycle, from code development to production deployment. This includes automating security testing and validation processes within CI/CD pipelines.
• Automate security checks and integrate them into build and deployment pipelines using tools like Jenkins, GitLab, or GitHub Actions to ensure continuous security.
• Conduct security assessments and identify vulnerabilities within applications, infrastructure, and services. Apply fixes and patches to secure the environment proactively.
• Develop, implement, and maintain security monitoring solutions for cloud, on-premise, and hybrid environments. Respond to security incidents by identifying, mitigating, and preventing future breaches.
• Ensure that infrastructure and applications meet security compliance requirements (SOC 2, PCI-DSS, GDPR, etc.) and work with the compliance team to maintain audits and documentation.
• Work closely with development and operations teams to design and implement security strategies and best practices. Help engineers adopt secure coding practices and assist in securing the development pipeline.
• Continuously evaluate, develop, and improve tools and processes to integrate security seamlessly into the software development lifecycle. Introduce new technologies and methodologies to stay ahead of emerging security threats.
• Analyze and report on security incidents and their root causes. Provide recommendations to reduce future risk and improve overall security posture.
• Educate team members on security best practices and raise awareness about security risks and mitigation strategies

Our Process

At Greenovative, we will start with an induction process which demands you to go through all phases of Agile development, right from Sprint Planning, to Requirement Walkthrough, Daily Scrums, Peer Code Reviews, Automated Tests, Sprint Demos, UAT with the client and finally Deployment to production. Yes, we stress a lot on sense of ownership in everything we do. You will work in an advanced, efficient backend and frontend stacks to power high performance apps. You will learn how high-scale software design is done and then deploy it to production, cloud platforms like Azure/AWS/GCP and work on most advanced technology frameworks and databases. To achieve you need to understand Distributed Systems, Algorithms and Data Structures, Database Scaling Techniques.