DevSecOps Architect
Indexed description
Job Purpose:
As the DevSecOps Architect for Connected Vehicle Platforms and Digital Products of Core Technology Team, you will design, secure, and scale the infrastructure underpinning our next-generation automotive ecosystem. You will operate at the intersection of extreme-scale cloud engineering and rigorous security governance.
About the Role
Scalable Infrastructure & Kubernetes Architecture :
- Design, automate, and maintain highly scalable, secure DevSecOps platforms (CI/CD/CT) in multi-cloud and hybrid-cloud environments using an advanced IaC stack (Terraform, CloudFormation, Ansible).
- Architecture and lifecycle management of production-grade Kubernetes (EKS) clusters, leveraging tools like ArgoCD for GitOps-driven deployments.
- Architect robust, secure, high-throughput network topologies, including complex VPC configurations, multi-region routing, and API Gateways.
High-Volume Performance & Load Testing
- Architect infrastructure capable of processing high-volume telemetry and real-time data streams with low latency.
- Design, build, and execute rigorous end-to-end load-testing frameworks (e.g., using Locust, JMeter, or distributed testing tools) to evaluate, benchmark, and scale the platform under extreme traffic spikes.
- Collaborate deeply with engineering teams to define and measure KPIs for application quality gates, finding innovative ways to accelerate delivery velocity and team productivity.
- Design deployment strategies (such as Canary or Blue/Green) to achieve true zero-downtime roll-outs during system updates.
Cost Optimization & FinOps
- Define and execute comprehensive cloud cost optimization techniques across all AWS services and Kubernetes clusters.
- Implement compute rightsizing strategies, automated scaling policies, Spot Instance integration, and data. lifecycle/tiering policies to maximize architectural efficiency and reduce spend.
- Implement infrastructure tracking tools to map cloud resource expenditures directly to business and platform utilization metrics.
Hybrid Security & Observability
- Design and build enterprise-level security solutions for hybrid-cloud SaaS products adhering to industry best practices.
- Identify and deploy cybersecurity measures by performing proactive vulnerability assessments, risk management, and participating deeply in penetration testing and audit cycles.
- Manage secure access control policies across the ecosystem with deep competence in IAM.
- Design and build centralized observability, monitoring, and logging systems across lower, UAT, and production environments , utilizing platforms such as Prometheus, Grafana, OpenTelemetry, and Google Analytics APIs.
- Establish resilient Incident Management, Release Management, and Change Management workflows.
Technical Skills/Knowledge
- API Gateway & WAF Domain Knowledge: Direct, hands-on experience designing and hardening edge traffic topologies using AWS API Gateway, AWS WAF, and reverse proxies under heavy transaction loads.
- AWS Expertise: Extensive, deep competence using the AWS Cloud native ecosystem and its multi-cloud/hybrid integration points.
- Kubernetes Mastery: Exceptional hands-on knowledge of containerization, Kubernetes configuration management (Config Connector/Helm), service meshes, and GitOps workflows via ArgoCD.
- Automation Coding: Strong general programming and scripting experience in Python / Javascript or Bash to write custom automation scripts and infrastructure tooling.
- Load Testing & FinOps Tools: Proven experience with performance simulation tools and cloud financial/utilization analysis.
- Certifications: AWS Certified DevOps Engineer – Professional or AWS Certified Solutions Architect – Professional is highly preferred.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search