Role Description

We are seeking a highly motivated and security-focused DevSecOps Engineer to integrate security practices into our DevOps processes and cloud-native infrastructure.

In this role, you will be responsible for embedding security controls across CI/CD pipelines, Kubernetes environments, and cloud platforms. You will work closely with engineering, DevOps, and security teams to ensure systems are secure by design, compliant with standards, and resilient against emerging threats.

This position requires a strong understanding of cloud security, automation, vulnerability management, and secure software delivery practices.

Key Responsibilities

1. Secure CI/CD & Shift-Left Security

• Integrate security scanning tools (SAST, DAST, SCA, container scanning) into CI/CD pipelines.
• Automate vulnerability detection and remediation workflows.
• Implement secure coding and dependency management practices.
• Enforce branch protection, secrets scanning, and artifact security.

2. Cloud & Kubernetes Security

• Secure Kubernetes clusters through RBAC, network policies, pod security standards, and admission controls.
• Implement container security best practices (image scanning, runtime protection).
• Harden cloud environments (AWS/GCP/Azure) using IAM policies, encryption, and secure configurations.
• Manage secrets securely using vaults and encrypted storage mechanisms.

3. Infrastructure as Code (IaC) Security

• Implement policy-as-code and automated compliance checks for Terraform, Helm, and other IaC tools.
• Conduct IaC security reviews and ensure misconfiguration prevention.
• Automate compliance validation across environments.

4. Monitoring, Threat Detection & Incident Response

• Integrate security monitoring tools into observability platforms.
• Define alerts for suspicious activities and vulnerabilities.
• Support incident response, root cause analysis (RCA), and remediation planning.
• Continuously improve detection and prevention capabilities.

5. Governance, Risk & Compliance

• Support implementation of security and compliance frameworks (SOC2, ISO 27001, etc.).
• Maintain audit logs, access reviews, and security documentation.
• Conduct risk assessments and vulnerability assessments across infrastructure.

6. Collaboration & Security Advocacy

• Partner with engineering teams to promote secure architecture and threat modeling.
• Conduct security awareness sessions and promote DevSecOps best practices.
• Act as a security champion within DevOps and engineering teams.

Current Challenges

• Embedding security seamlessly into fast-moving CI/CD pipelines.
• Managing vulnerabilities across containers, dependencies, and cloud workloads.
• Preventing misconfigurations in Kubernetes and Infrastructure as Code.
• Achieving compliance without slowing down delivery velocity.
• Enhancing real-time security visibility across distributed systems.

Qualifications & Experience

• 4–8 years of experience in DevOps, Security Engineering, or DevSecOps roles.
• Strong understanding of CI/CD tools and pipeline security integration.
• Hands-on experience securing Kubernetes and containerized environments.
• Experience with cloud platforms (AWS/GCP/Azure) and cloud security best practices.
• Familiarity with Infrastructure as Code tools (Terraform, Helm) and IaC scanning.
• Experience with vulnerability scanning, container security, and dependency management tools.
• Knowledge of networking, encryption, IAM, and access control models.
• Proficiency in scripting (Bash, Python, or similar).
• Strong analytical, problem-solving, and communication skills.

Why Kimbal?

You will play a critical role in strengthening our security posture while enabling rapid innovation. This position offers the opportunity to shape DevSecOps practices, influence cloud security strategy, and build secure-by-default systems in a modern cloud-native environment.

Latest Jobs

Senior Firmware Engineer

Location: New Delhi About Role Embedded Software Engineer with strong experience in Embedded C, Zephyr RTOS, and Linux-based systems. The role involves developing firmware for embedded devices, building reusable SDKs and platform components, integrating with gateway systems, and supporting large-scale IoT deployments. Key Responsibilities Required Skills Good to Have

Senior Firmware Engineer

Location: Bengaluru About Role Embedded Software Engineer with strong experience in Embedded C, Zephyr RTOS, and Linux-based systems. The role involves developing firmware for embedded devices, building reusable SDKs and platform components, integrating with gateway systems, and supporting large-scale IoT deployments. Key Responsibilities Required Skills Good to Have

Digital Business Partner – Engineering / PLM / R&D

Location: Delhi About the Role  We are looking for a dynamic IT Business Partner to work closely with our Engineering team (R&D, New Product Development, Software Development, Manufacturing Engineering) and drive digital transformation initiatives.  This role will act as a strategic bridge between Engineering, IT, and external technology vendors, leading PLM implementation, SAP integration, engineering automation, and KPI […]

Director – Enterprise Solutions (SAP)

Location: Delhi Role Description The Director – Enterprise Solutions (SAP) will be responsible for owning and leading Kimbal’s SAP landscape across the enterprise. This role will define SAP strategy, governance, architecture, and execution to enable scalable growth, operational excellence, and data-driven decision-making across manufacturing, supply chain, projects, finance, HR, and commercial functions. The role will […]