The DevSecOps Architect is responsible for integrating security practices into the DevOps processes to ensure secure and compliant software delivery particularly within government environments. This role requires proficiency in Arabic and experience working with government agencies or projects ensuring that all security measures adhere to regulatory and compliance standards specific to the public sector.
KEY RESPONSIBILITIES:
- Security Integration: Design implement and maintain security measures throughout the DevOps pipeline ensuring secure development testing and deployment of applications.
- Government Compliance: Ensure all security practices align with government regulations and standards including data protection privacy laws and compliance frameworks specific to the public sector.
- Collaboration: Work closely with development operations and security teams to embed security practices and foster a securityfirst mindset across the organization.
- Security Automation: Develop and implement automated security testing tools and processes such as CI/CD pipelines to enhance the efficiency and effectiveness of security measures.
- Incident Response: Lead incident response activities including the identification containment and remediation of security breaches or vulnerabilities particularly within sensitive government environments.
- Risk Management: Identify and assess security risks in collaboration with government stakeholders developing strategies to mitigate potential threats.
- Training and Development: Conduct training sessions for internal teams to increase awareness and understanding of security best practices particularly in relation to government projects.
- Reporting: Prepare and present security reports and metrics to senior management and government agencies demonstrating compliance and security posture.
QUALIFICATIONS:
Education: Bachelors or Masters degree in Computer Science Information Security or a related field.
Experience:
- Proven experience in a DevSecOps role preferably within government or public sector projects.
- Strong understanding of security frameworks tools and practices within DevOps environments.
- Experience working with government compliance and regulatory standards such as NIST FISMA or GDPR.
Skills:
- Proficiency in Arabic (both written and spoken) is required.
- Strong knowledge of security tools and technologies including vulnerability management SIEM and automated security testing.
- Excellent communication and collaboration skills with the ability to work effectively across different teams and departments.
- Familiarity with cloud security principles and practices particularly within government cloud environments.
- Certifications: Relevant certifications such as CISSP CISM or AWS Certified DevSecOps Engineer are highly desirable.
Preferred Qualifications:
- Experience with government contract work or working directly with government agencies.
- Understanding of Arabicspecific cybersecurity challenges and regulations.
Vertical
Technology
Remote Work :
No