DevSecOps Architect – CI/CD & Application Security

DevSecOps Architect enables secure software delivery by embedding AppSec and cloud security into CI/CD pipelines and developer workflows. Responsibilities include designing, implementing, and operating automated security guardrails across source code, build, and deployment pipelines; embedding automated AppSec checks across code, dependencies, builds, and deployment; defining secure CI/CD reference architectures; partnering with engineering to minimize friction; developing reusable pipeline templates, policy controls, and automation to scale AppSec; securing pipeline infrastructure and credentials against build manipulation and leakage; integrating security findings with security monitoring; responding to security findings; aligning pipeline controls with cloud security best practices; embedding AI/ML/GenAI security controls within pipelines; enforcing secure usage patterns for LLMs and AI services; safeguarding AI-related secrets and API access; monitoring risks from AI/ML components; contributing to AI risk governance and auditability; staying current on AI security threats; authoring documentation and training for secure CI/CD/AppSec adoption; evaluating emerging threats and improving controls.