The company is seeking a highly experienced and hands-on DevSecOps Lead with 15+ years of experience in the IT industry. This role involves designing, implementing, and governing an automated, secure, and scalable CI/CD pipeline that supports Digital Agile Release Train (ART) delivery. Candidates must possess deep technical expertise across DevOps, cloud, security, and release engineering, alongside strong stakeholder leadership capabilities. The DevSecOps Lead will define strategy while actively architecting and implementing solutions.
Ready to apply for roles like this?
Unlock the company name and direct application link. Subscribers get instant access to fresh jobs across Dubai, Abu Dhabi and Riyadh, many with visa support.
Unlock employer & apply directly
Location: Abu Dhabi Emirate, United Arab Emirates
Work Conditions: On-site, Full-time
Language Requirements: Not specified
Key Responsibilities:
-
DevSecOps Strategy & Architecture
- Define and implement an end-to-end DevSecOps strategy aligned with Agile Release Train delivery.
- Architect and standardize CI/CD pipelines across multiple digital products and platforms.
- Establish DevSecOps governance, controls, and best practices across teams.
- Embed security controls (Shift Left) within development and deployment pipelines.
-
CI/CD & Release Automation
- Design and implement automated build, test, security scan, and deployment pipelines.
- Integrate automated unit, integration, regression, performance, and security testing into CI/CD workflows.
- Enable environment provisioning through Infrastructure as Code (IaC).
- Drive release orchestration, version control, branching strategies, and rollback mechanisms.
- Optimize deployment frequency while ensuring reliability and compliance.
-
Security & Compliance Integration
- Implement SAST, DAST, SCA, container security, and secrets management in pipelines.
- Ensure secure API lifecycle management.
- Establish DevSecOps metrics and compliance reporting dashboards.
- Collaborate with InfoSec and Risk teams to align with regulatory and enterprise security standards.
-
Cloud & Infrastructure Enablement
- Lead automation across cloud environments (AWS/Azure/GCP).
- Implement containerization and orchestration strategies (Docker, Kubernetes).
- Optimize scalability, resilience, and cost-efficiency of environments.
- Establish monitoring, observability, and logging frameworks.
-
Stakeholder & Program Leadership
- Act as the primary DevSecOps SME across Business and Technology.
- Collaborate with Enterprise Architects to align pipelines with long-term architecture vision.
- Engage senior business stakeholders to communicate risks, trade-offs, and roadmap priorities.
- Lead cross-functional teams and mentor DevOps engineers.
Required Technical Expertise:
- Deep hands-on experience with CI/CD tools (e.g., Jenkins, GitHub Actions, GitLab CI).
- Strong scripting and automation skills (Python, Bash, PowerShell).
- Experience with Infrastructure as Code.
- Containerization & orchestration (Docker, Kubernetes).
- Experience implementing DevSecOps controls and security scanning tools (SonarQube, Fortify, etc.).
- Cloud-native architecture knowledge (AWS/Azure).
- Experience with API gateway integrations and microservices architectures.
- Strong understanding of branching strategies and Git workflows.
Leadership & Behavioral Competencies:
- Ability to operate at both strategic and hands-on technical levels.
- Strong stakeholder management and executive communication skills.
- Experience working within large-scale Agile/SAFe environments.
- Proven ability to influence cross-functional teams without direct authority.
- Strong problem-solving and systems-thinking mindset.
- Ability to drive cultural transformation toward DevSecOps adoption.
Preferred Qualifications:
- SAFe DevOps certification
- AWS/Azure Architect certifications
- CISSP / Security certifications (desirable)
- Experience in Digital, eCommerce, or Airline/Travel platforms (preferred)
