DevSecOps Architect
Indexed description
Website: Visit Website
Business Type: Startup
Company Type: Product & Service
Business Model: B2B
Funding Stage: Pre-seed
Industry: Technology
Salary Range: ₹ 40-50 Lacs PA
Job Description
HCP ONE is a business strategy and leadership advisory firm that helps organizations build high‑performance teams and strengthen their human capital capabilities. The company delivers talent assessment, leadership evaluation, and organizational effectiveness solutions, combining scientific selection methods with industry insight to support client success and measurable business outcomes.
Role Summary
The DevSecOps Architect will design, implement, and govern a secure DevSecOps ecosystem centered on OpenShift (OCP). This role ensures security-by-design across CI/CD pipelines, container platforms, and hybrid cloud/on-prem infrastructure, aligned to enterprise compliance and BFSI audit standards.
Key Responsibilities
OpenShift & DevSecOps Architecture
- Define and own DevSecOps reference architecture for OpenShift (multi-cluster, HA, DC-DR).
- Establish standards for namespace strategy, cluster isolation, network segmentation, RBAC, and IAM.
- Align OpenShift platform design with enterprise security policies.
- Architect secure CI/CD pipelines integrated with OpenShift using Git, Jenkins/GitLab CI.
- Define branching, tagging, image promotion, and release workflows.
- Implement automated build, test, security scan, and deployment gates.
- Implement image hardening, admission controllers, SCC, and runtime protection.
- Integrate image scanning, secrets management, and runtime threat detection.
- Enforce policy-as-code using OpenShift native controls.
- Integrate SAST, DAST, SCA, and container scanning into pipelines.
- Enable artifact signing, vulnerability management SLAs, and exception governance.
- Automate provisioning, upgrades, and patching using Terraform, Ansible, and Helm.
- Design secure OpenShift deployments across bare metal, private cloud, and AWS/Azure.
- Implement Infrastructure as Code for scalable, repeatable environments.
- Ensure adherence to ISO 27001, PCI-DSS, RBI/BFSI guidelines.
- Lead VAPT, audits, regulatory reviews, and maintain architecture/SOP documentation.
- Architect and validate DR, BCP, failover strategies, and drill readiness with audit evidence.
- Act as DevSecOps advisor to platform, security, and application teams.
- Mentor DevOps/SRE teams and drive DevSecOps best practices adoption.
CI/CD: Jenkins, GitLab CI, Git workflows (GitFlow/Trunk)
Security: SAST, DAST, SCA, image scanning, Vault/KMS, OpenShift Secrets
Cloud & IaC: AWS/Azure/Private Cloud, Terraform, Ansible, Helm
Monitoring: Prometheus, Grafana, EFK/ELK
Soft Skills
- Strong governance and documentation mindset
- Experience handling audits and regulators
- Effective stakeholder communication
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search