About the Role
Certa is hiring a Senior DevSecOps Engineer - I to strengthen Certa’s AWS production infrastructure and embed security-first engineering practices across our product ecosystem.
This role is hands-on and operationally critical, responsible for securing, automating, stabilizing, and scaling AWS workloads across EKS, ECS, EC2, and serverless environments.
The position bridges Engineering, Security, and Operations to ensure high availability, compliance, resilience, and secure CI/CD deployments.

What You Will Do

• AWS Infrastructure & Operations
• Manage and optimize AWS production workloads (EKS, ECS, EC2, Lambda).
• Administer AWS services including S3, ECR, CloudFront, API Gateway, SNS, SES, IAM, Secrets Manager, and CloudWatch.
• Configure and secure networking components (VPC, subnets, route tables, NAT, ALB/NLB, AWS WAF).
• Lead incident response, production troubleshooting, and root cause analysis (RCA).
• Ensure uptime, SLA adherence, and performance optimization.
• CI/CD & Automation
• Design and maintain secure CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI, AWS CodePipeline).
• Integrate SAST, DAST, SCA, container scanning, and IaC scanning within pipelines.
• Automate infrastructure provisioning using Terraform / CloudFormation.
• Implement secure release governance and policy-as-code guardrails.
• DevSecOps & Security Engineering
• Enforce least-privilege IAM and secure key management practices.
• Embed Zero Trust and defense-in-depth principles across AWS architecture.
• Drive vulnerability management and compliance monitoring.
• Promote a Security-by-Design and SRE-driven reliability culture.
• Observability & Reliability
• Implement monitoring and alerting using CloudWatch, Prometheus, Grafana, and ELK.
• Improve system observability and proactive anomaly detection.
• Support debugging across infrastructure, networking, and application layers.
• Cross-Functional Enablement
• Collaborate with Development and QA to improve deployment velocity and reliability.
• Document architecture standards and operational runbooks.
• Mentor engineers on DevSecOps best practices.

What You Will Need

• 6-8 years of experience in Cloud / DevOps / DevSecOps roles.
• Strong AWS production experience (EKS, ECS, EC2, S3, CloudFront, API Gateway, IAM, WAF, VPC).
• Strong Kubernetes and Docker expertise.
• Experience with CI/CD tools (Jenkins, GitHub Actions, GitLab CI, CodePipeline).
• Hands-on Infrastructure-as-Code experience (Terraform / CloudFormation).
• Strong networking fundamentals (VPC design, routing, DNS, TLS, load balancing).
• Experience integrating security scanning and compliance controls.
• Scripting skills (Helm, Terraform Groovy, Bash, Python, YAML, JSON).
• Strong troubleshooting and analytical skills.