Cloud DevSecOps Engineer

We are seeking an experienced Cloud DevSecOps Engineer to support a UAE-based sovereign cloud programme. This is a contractor position, open to candidates based anywhere globally, working remotely with periodic on-site presence in the UAE as project needs require.

You will play a key role in designing, implementing, and operating secure cloud platforms and CI/CD pipelines, ensuring that security, compliance, and automation are embedded throughout the full lifecycle of cloud-native services. The environment is highly regulated, requiring strict adherence to UAE data sovereignty, security, and compliance standards.

Key Responsibilities

Cloud Platform & CI/CD Engineering

• Design, build, and operate secure CI/CD pipelines for cloud-native workloads (e.g. GitLab CI, GitHub Actions, Azure DevOps, Jenkins).
• Develop and maintain infrastructure-as-code solutions using tools such as Terraform, Bicep, Ansible, and Helm.
• Create and manage reusable pipeline templates and automation patterns for multiple product teams.

DevSecOps & Security by Design

• Embed security controls into CI/CD pipelines, including SAST, SCA, DAST, container image scanning, and secrets detection.
• Implement policy-as-code and governance guardrails using tools like OPA, Conftest, or Sentinel.
• Collaborate with security and compliance teams to ensure alignment with UAE sovereign cloud regulations and industry standards (ISO 27001, NIST, local cybersecurity frameworks).

Cloud & Platform Operations

• Operate and optimise Kubernetes and/or VM-based environments within a sovereign or private cloud.
• Support service mesh, API gateways, ingress/egress controls, and zero-trust architectures.
• Define and enforce secure configuration baselines (CIS benchmarks, hardened images, container security standards).

Observability & Reliability

• Implement monitoring, logging, metrics, and tracing solutions (Prometheus, Grafana, ELK/EFK, OpenTelemetry).
• Build dashboards and alerting for platform health, performance, and security events.
• Contribute to SRE practices including SLIs/SLOs, incident response, and post-incident reviews.

Governance, Compliance & Documentation

• Ensure pipelines and automation generate auditable evidence for compliance and regulatory reporting.
• Produce and maintain runbooks, technical documentation, and standard operating procedures.
• Support threat modelling, risk assessments, and security design reviews.

Collaboration & Enablement

• Work closely with development, security, infrastructure, and network teams.
• Coach delivery teams on secure coding, DevSecOps practices, and platform tooling.
• Contribute to the ongoing evolution and roadmap of the sovereign cloud platform.