Team Lead, DevSecOps
New
D
DeelSoftware as a Service (SaaS)
EMEAFull-TimeLead
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 6+ years in Security, DevOps, or Infrastructure roles. 2+ years in a leadership capacity
- Required Skills
- AWSPythonGCPKubernetesTypeScriptAzureGoTerraformAnsibleGitHub Actions
Requirements
- 6+ years in Security, DevOps, or Infrastructure roles
- 2+ years in a leadership capacity (Team Lead, Tech Lead, or Engineering Manager)
- Proven track record of scaling security practices in a cloud-native, high-growth environment
- Expert knowledge of Terraform/OpenTofu
- Expert knowledge of Ansible
- Expert knowledge of CI/CD platforms (GitHub Actions, GitLab CI)
- Deep understanding of Kubernetes security (RBAC, Network Policies, Admission Controllers)
- Deep understanding of cloud provider security services (AWS/Azure/GCP)
- Experience implementing and tuning SAST
- Experience implementing and tuning DAST
- Experience implementing and tuning SCA
- Experience implementing and tuning Secret Management (HashiCorp Vault) at scale
- Proficiency in Python
- Proficiency in Go
- Proficiency in TypeScript to build custom internal security tooling and integrations
- Ability to balance "perfect security" with the "speed of business"
- Exceptional ability to translate complex technical risks into business impact for executive stakeholders
Responsibilities
- Lead, mentor, and coach a team of DevSecOps engineers.
- Conduct performance reviews, manage career development paths, and foster a culture of high performance.
- Define the DevSecOps strategy and multi-quarter roadmap, aligning security initiatives with broader business and engineering goals.
- Act as the primary point of contact for Engineering and Product leads to ensure security requirements are baked into the Product Discovery phase.
- Lead the implementation of organizational guardrails using tools like OPA (Open Policy Agent) or Kyverno to ensure compliance is automated across all environments.
- Oversee the design of secure cloud architectures (AWS/Azure/GCP) and Kubernetes clusters, focusing on Zero Trust networking and identity-driven access.
- Evaluate, procure, and manage third-party security vendors and tools (e.g., Snyk, Wiz, Cloudflare), ensuring maximum ROI and technical fit.
- Define and track key performance indicators (KPIs) such as Mean Time to Remediate (MTTR), vulnerability burn-down rates, and false-positive ratios.
- Serve as a technical escalation point for high-severity security incidents and lead the "Blameless Post-Mortem" process to drive systemic improvements.
View Full Description & ApplyYou'll be redirected to the employer's site
