Lead DevSecOps Engineer at Diamond Trust Bank (DTB)

Job Purpose :

Diamond Trust Bank is seeking a Lead DevSecOps Engineer to join our team of innovators and engineers. This role reports directly to the Head of Engineering and works closely, API, Mobile, Web, Infosec, Cloud Engineering, Data Science and Architecture teams. The ideal candidate is an energetic self-starter with the ability to make independent strategic decisions.

The Lead DevSecOps Engineer will be responsible for defining the baseline standards and overseeing the implementation and management of DevSecOps practices to be adopted as a standard for DTB. The lead will provide technical expertise, leadership, and guidance to the DevSecOps team in the creation, maintenance, and optimization of CI/CD pipelines and cloud-native infrastructure that drive collaboration, automation, and efficiency within the software development lifecycle, ultimately contributing to faster and more reliable software delivery.

Together, let's create meaningful mobile solutions that make an impact in the digital world.

Key Responsibilities :

• Technical Leadership: Provide technical leadership and mentorship members of the team, fostering a learning culture, promoting a continuous improvement, collaborative and innovative environment. Guide the team in applying best practices, architectural patterns, and industry standards to ensure the delivery of high-quality infrastructure and CI/CD practices.
• Documentation: Maintain comprehensive documentation for configurations, processes, and procedures. Ensure that documentation is up-to-date and accessible to the team.
• Infrastructure as Code (IaC): Implement and manage Infrastructure as Code practices to automate the provisioning and configuration of infrastructure components. Utilize tools like Terraform, Ansible, or others to automate infrastructure deployments.
• Continuous Integration and Continuous Deployment (CI/CD): Design, implement, and manage CI/CD pipelines to automate the build, test, and deployment processes. Ensure rapid and reliable software delivery.
• Code Reviews and Quality Assurance: Conduct regular code reviews to ensure adherence to coding standards, security best practices, and maintainable code.
• Release Management: Coordinate and manage software releases, including versioning, deployment, and rollback procedures. Collaborate with development and operations teams to streamline release processes.
• Automation and Scripting: Develop automation scripts and tools to streamline repetitive tasks and processes. Foster a culture of automation within the team.
• Observability: Implement and maintain observability solutions to track system performance and identify issues. Set up centralized visualisation of metrics, traces and logs with a focus on cost optimization and OpenTelemetry, Grafana, Thanos with effective alerting mechanisms for engineering and support.
• Incident Response and Troubleshooting:Incident Response and Troubleshooting: Lead incident response efforts and troubleshoot issues related to infrastructure and deployments. Implement measures to prevent recurring incidents.
• Collaboration and Communication: Facilitate communication and collaboration between development, operations, and other cross-functional teams. Promote a culture of transpa>rency and shared responsibility.
• Capacity Planning: Planning: Conduct capacity planning to ensure that infrastructure resources meet current and future needs. Optimize resource utilization to achieve cost efficiency.
• Continuous Improvement: Continuously assess and improve DevOps processes based on feedback and performance metrics. Stay informed about industry best practices and emerging technologies.
• Visibility: Track work related tasks at every stage as a member of an Agile Team and keep the team aligned with infrastructure changes.

Academic :

• Bachelor's degree in Computer Science, Software Engineering, or a related field (or equivalent work experience).

Professional :

• 7+ years of proven experience as an engineer in the DevSecOps, Software, Quality and other related areas.
• Expertise in DevSecOps practices including CI/CD pipelines, container orchestration using Kubernetes, cloud/network security, in-pipeline Security assessments such as SonarQube (SAST), VeraCode (DAST), automated deployments and rollback.
• Proficiency in Terraform and IAC tooling.
• Familiarity with in-pipeline testing frameworks and tools.
• Experience with version control systems, such as Git, and CI/CD pipelines.
• Strong problem-solving and analytical skills.
• Good leadership and communication abilities, with the capacity to collaborate effectively with cross-functional teams.
• Experience with Agile development methodologies.
• Experience with Tekton (CI) and Flux (CD) is a plus.
• Understanding of scaling up and down systems for performance and/or cost management.
• Strong understanding of high availability and fault-tolerant systems, disaster recovery and automation in the cloud.
• Experience with configuration tools Terraform, Helmfile, Flux, Tekton.
• Experience with monitoring tools OpenTelemetry, Prometheus and Grafana
• Experience in one or more of the following: Java, Python, Go, React
• Knowledge of common vulnerabilities and ability to conduct vulnerability assessments.
• Experience with security testing tools and processes.
• Knowledge of regulatory and compliance requirements (e.g., GDPR, HIPAA, PCI- DSS).