PitchMeAI
BNI Global

DevSecOps Engineer

BNI Global · Bengaluru East, Karnataka, India

  • On site
  • Full-time
  • $120,000 / year
  • Bengaluru East, Karnataka, India

Job highlights

  • Secure applications, infrastructure, and pipelines by design.
  • Integrate security tools into CI/CD pipelines.
  • Implement container and Kubernetes security best practices.
  • Manage cloud security, IAM, and secrets.
  • Monitor, detect, and respond to security incidents.

About the role

DevSecOps Engineer

BNI Global is seeking a skilled DevSecOps Engineer to integrate security across the software development and delivery lifecycle. You will ensure applications, infrastructure, and pipelines are secure by design, working closely with engineering, platform, and cloud teams. This role requires strong technical capability, understanding of cloud-native architectures, and the ability to apply security best practices without hindering delivery.

Job Responsibilities:

Security Engineering & Secure Development
  • Apply security best practices to address common vulnerabilities, including OWASP Top 10 risks.
  • Participate in threat modeling discussions to identify attack vectors and mitigate risks early in the design phase.
  • Review application code for security vulnerabilities and enforce secure coding standards across development teams.
CI/CD & DevSecOps Integration
  • Integrate SAST, DAST, and SCA tools into CI/CD pipelines.
  • Tune security tools, minimize false positives, and support automated remediation where feasible.
  • Design and maintain secure CI/CD pipelines with appropriate security gates and controls.
  • Automate security scans and contribute to reusable security automation frameworks.
Container & Kubernetes Security
  • Enforce secure base image standards and harden container configurations.
  • Implement runtime container security controls (e.g., Falco or equivalent tools).
  • Apply Kubernetes security best practices including RBAC, network policies, and Pod Security standards.
Cloud & Infrastructure security (AWS)
  • Implement least-privilege access models using IAM roles and policies.
  • Configure secure networking controls including security groups, NACLs, and zero-trust principles.
  • Support secure cloud architecture through policy enforcement and continuous monitoring.
Secrets, Identity & Access Management
  • Implement centralized secrets management using tools such as AWS Secrets Manager or HashiCorp Vault.
  • Enforce secrets rotation policies and access controls.
  • Apply Role‑Based Access Control (RBAC) across platforms and services.
Vulnerability Management & Compliance
  • Monitor, prioritize, and track vulnerabilities across applications and infrastructure.
  • Define and support SLAs for vulnerability remediation.
  • Implement audit logging and support compliance and internal audit requirements.
Monitoring, Detection & Incident Response
  • Monitor logs and security telemetry for anomalous or suspicious activity.
  • Implement and support SIEM solutions and security dashboards.
  • Assist in handling security incidents, including basic incident response and root‑cause analysis.
Data & Network Security
  • Apply data security controls including encryption in transit (TLS) and at rest.
  • Support secure data handling and protection designs across systems.
  • Assist in designing and maintaining secure network architectures.

Any additional duties needed to help demonstrate our core values, drive our vision, and fulfill our mission.

Competencies:

  • Accountability & Integrity
  • Communication
  • Analytical Thinking
  • Initiative
  • Interpersonal Skills
  • Problem Solving
  • Self-Management
  • Teamwork
  • Technical Proficiency

Qualifications:

  • Business-level English proficiency.
  • 2–5 years of experience in DevSecOps, Application Security, Cloud Security, or a related role.
  • Bachelor’s degree in Computer Science, Information Technology, Engineering, or a related technical field.
  • Strong understanding of application and infrastructure security fundamentals.
  • Hands‑on experience with: SAST, DAST, and SCA tools; CI/CD pipelines (e.g., GitHub Actions, GitLab CI, Jenkins); Containers and Kubernetes security; AWS security services and IAM.
  • Experience with secrets management and secure configuration practices.
  • Working knowledge of monitoring, logging, and security observability tools.
  • Ability to automate repetitive security tasks using scripts or pipelines.
  • Strong problem‑solving skills and the ability to collaborate with cross‑functional teams.

Preferred Qualifications:

  • Experience with runtime security tools (e.g., Falco).
  • Exposure to SIEM platforms and incident response processes.
  • Familiarity with compliance standards and audit preparation.
  • Experience working in cloud‑native, microservices‑based environments.

Key skills/competency:

  • DevSecOps
  • Application Security
  • Cloud Security
  • Kubernetes Security
  • CI/CD Pipelines
  • AWS Security
  • Vulnerability Management
  • SAST DAST SCA
  • Secure Coding
  • Incident Response

Skills & topics

  • DevSecOps Engineer
  • DevSecOps
  • Application Security
  • Cloud Security
  • Kubernetes Security
  • CI/CD
  • AWS Security
  • Vulnerability Management
  • SAST
  • DAST
  • SCA
  • Secure Coding
  • Threat Modeling
  • Incident Response
  • IAM
  • GitHub Actions
  • GitLab CI
  • Jenkins
  • Docker
  • Falco

How to get hired

  • Tailor your resume: Highlight DevSecOps experience, cloud security, and CI/CD skills. Quantify achievements in security integration and vulnerability reduction.
  • Showcase technical expertise: Emphasize hands-on experience with SAST, DAST, SCA, Kubernetes, and AWS security services. Mention automation skills with scripting or pipeline tools.
  • Demonstrate understanding of security principles: Articulate your knowledge of OWASP Top 10, threat modeling, and secure coding standards.
  • Prepare for technical interviews: Be ready to discuss security challenges in cloud-native environments and provide solutions for common vulnerabilities.
  • Research BNI Global: Understand their mission, values, and focus on security to align your answers with their goals.

Technical preparation

Master SAST, DAST, and SCA tool integration.,Automate security scans in CI/CD pipelines.,Deepen knowledge of Kubernetes security practices.,Practice AWS IAM and secrets management.

Behavioral questions

Describe a security vulnerability you found and fixed.,How do you balance security with delivery speed?,Explain a complex security concept simply.,How do you collaborate with engineering teams?

Frequently asked questions

What are the key responsibilities for a DevSecOps Engineer at BNI Global?
The DevSecOps Engineer at BNI Global is responsible for integrating security into the software development lifecycle, including secure coding practices, CI/CD pipeline security, container and Kubernetes security, AWS security, and vulnerability management. They also contribute to monitoring, detection, and incident response.
What experience is required for the DevSecOps Engineer role at BNI Global?
BNI Global requires 2-5 years of experience in DevSecOps, Application Security, Cloud Security, or a related field. A Bachelor's degree in a technical field is also necessary, along with hands-on experience in key areas like SAST/DAST/SCA, CI/CD, Kubernetes, and AWS security.
What are the preferred qualifications for a DevSecOps Engineer at BNI Global?
Preferred qualifications include experience with runtime security tools like Falco, familiarity with SIEM platforms and incident response, knowledge of compliance standards, and experience in cloud-native, microservices-based environments. Exposure to compliance and audit preparation is also beneficial.
How does BNI Global approach security in their development lifecycle?
BNI Global emphasizes integrating security by design across the entire software development and delivery lifecycle. This involves proactive threat modeling, secure coding standards, automated security testing in CI/CD pipelines, and robust security controls for cloud infrastructure and containerized environments.
What kind of technical skills are essential for this DevSecOps Engineer position?
Essential technical skills include hands-on experience with SAST, DAST, and SCA tools, CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins), container and Kubernetes security, and AWS security services (IAM). The ability to automate security tasks is also crucial.
Can you describe the work environment for a DevSecOps Engineer at BNI Global?
The role involves collaborating closely with engineering, platform, and cloud teams. While the description mentions 'sedentary work' with specific physical demands for US-based roles, the overall environment is focused on technical collaboration and proactive security integration within a full-time position.