DevSecOps Engineer / Lead/ Architect

Company Profile:

VLink, founded in 2006, is a leading global provider of software engineering services with next-gen technologies and best-in-class talent. Our Headquarters are in the U.S, and we have offices in 7+ countries from North America-Europe to APAC, with expansion plans in the Middle East.  With over 1,000 employees working globally, VLink has helped SMBs, and large enterprises achieve their business goals, and gained the trust of Fortune-250 companies. VLink is ‘Great Place to Work? Certified™'' and has been a consistent winner as- Best Places to Work in CT.  Trust, collaboration, and accountability are the three elements that are at the core of VLink’s work culture. We value our professionals, providing comprehensive benefits and the opportunity for growth.

Job Title: DevSecOps Lead/ Architect

Location: Cleveland, OH, Pittsburgh, PA, or Dallas, TX, onsite 5days/ week

Job Type: Permanent Full Time

Position Description

We are seeking a Lead DevSecOps Engineer to champion secure by design engineering across our cloud and application platforms. You will lead the integration of security into CI/CD pipelines, architect secure cloud environments, and guide teams in adopting modern DevSecOps practices.

This is a high impact leadership role where you will influence strategy, mentor engineers, and shape CGI’s security posture across mission critical systems.

We''re standing up a dedicated vulnerability management practice at one of the largest banks in the US, automating what two vendor teams currently do by hand, and building the AI layer that takes it further.

The work is hands-on, the impact is visible, and you''ll have a delivery team ready to execute with you from day one.

Shift-Left and Continuous Improvement

• Drive shift-left security practices within client''s BTI Retail, Lending, AMG, and CIB application teams by embedding PAC checks and container security scanning in Bitbucket PR pipelines before vulnerabilities surface in Sysdig scans.
• Identify and implement automation improvements targeting the highest volume repeatable remediation patterns.
• Contribute operational insights from pipeline execution data to the Solution Architect and AI/ML Engineers to continuously improve the AI triage engine.

Required Qualifications:

• 7+ years of hands-on DevSecOps or security automation engineering in enterprise environments
• Deep Jenkins experience in production at enterprise scale: shared library development, pipeline-as-code, credential management, plugin administration, and troubleshooting in multi-team environments
• Bitbucket administration and pipeline integration: branch permissions, PR workflow configuration, webhook-driven automation, and Jenkins integration patterns
• Artifactory: dependency management, artifact promotion, repository configuration, and security scanning integration
• Python at production quality: REST API integrations, data pipeline code, and automation scripts that GCC engineers will maintain
• Ansible: writing and maintaining playbooks for OS-level and middleware-level remediations on Linux and Windows
• Terraform: writing modules for infrastructure configuration changes with proper state management and change governance
• Policy-as-code implementation: OPA/ Conftest or equivalent enforcing security standards within CI/CD pipelines at runtime
• REST API integration: production integrations against Archer GRC, ServiceNow, and Jira APIs
• Container platform operations: Docker and OpenShift/OCP specifically including image management, CaaS operations, and container security scanning
• Vulnerability management platform experience: Archer GRC, Tanium, or Security Center in an operational day-to-day capacity
• CyberArk secrets management: integrating CyberArk with CI/CD pipelines and enforcing no-hardcoded-credentials standards
• Banking or financial services environment: CAB process, change window management, production deployment governance, and audit evidence requirements in a regulated context. Non-negotiable for this engagement.

Preferred Qualifications

• Direct client environment experience: familiarity with Converge, Micron framework, CaaS/OCP configuration, or BTI Retail/Lending mnemonic structure
• Sysdig operational experience: container vulnerability scanning, alert configuration, and downstream triage integration
• Tanium experience: endpoint detection, vulnerability data extraction, and API integration
• LangChain or AI agent pipeline experience: Phase 2 introduces an AI triage engine and engineers who can contribute to its operational integration will be more effective
• Jira administration and Confluence technical documentation at production quality

Skills:

• Container Technology
• Jenkins
• Python
• Terraform
• Vulnerability coordination
• Ansible
• Bitbucket

Employment Practices:
EEO, ADA, FMLA Compliant

VLink is an equal opportunity employer committed to fostering an inclusive environment where diversity is celebrated. All qualified applicants will be considered for employment without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. Employment is contingent upon successful completion of a background check. Applicant information will be handled in accordance with VLink''s privacy policy.