DEVSECOPS ARCHITECT

The DevSecOps Architect is responsible for integrating security practices into the DevOps processes to ensure secure and compliant software delivery, particularly within government environments. This role requires proficiency in Arabic and experience working with government agencies or projects, ensuring that all security measures adhere to regulatory and compliance standards specific to the public sector.

KEY RESPONSIBILITIES:

• Security Integration: Design, implement, and maintain security measures throughout the DevOps pipeline, ensuring secure development, testing, and deployment of applications.
• Government Compliance: Ensure all security practices align with government regulations and standards, including data protection, privacy laws, and compliance frameworks specific to the public sector.
• Collaboration: Work closely with development, operations, and security teams to embed security practices and foster a security-first mindset across the organization.
• Security Automation: Develop and implement automated security testing tools and processes, such as CI/CD pipelines, to enhance the efficiency and effectiveness of security measures.
• Incident Response: Lead incident response activities, including the identification, containment, and remediation of security breaches or vulnerabilities, particularly within sensitive government environments.
• Risk Management: Identify and assess security risks in collaboration with government stakeholders, developing strategies to mitigate potential threats.
• Training and Development: Conduct training sessions for internal teams to increase awareness and understanding of security best practices, particularly in relation to government projects.
• Reporting: Prepare and present security reports and metrics to senior management and government agencies, demonstrating compliance and security posture.

QUALIFICATIONS:

Education: Bachelors or Masters degree in Computer Science, Information Security, or a related field.

Experience:

• Proven experience in a DevSecOps role, preferably within government or public sector projects.
• Strong understanding of security frameworks, tools, and practices within DevOps environments.
• Experience working with government compliance and regulatory standards, such as NIST, FISMA, or GDPR.

Skills:

• Proficiency in Arabic (both written and spoken) is required.
• Strong knowledge of security tools and technologies, including vulnerability management, SIEM, and automated security testing.
• Excellent communication and collaboration skills, with the ability to work effectively across different teams and departments.
• Familiarity with cloud security principles and practices, particularly within government cloud environments.
• Certifications: Relevant certifications such as CISSP, CISM, or AWS Certified DevSecOps Engineer are highly desirable.

Preferred Qualifications:

• Experience with government contract work or working directly with government agencies.
• Understanding of Arabic-specific cybersecurity challenges and regulations.

Vertical

Technology