DevSecOps Engineer

DevSecOps Engineer - Salesforce

remote - w2 long term contract

We are seeking a DevSecOps Engineer with strong expertise in Salesforce development, deployment, and security practices. The ideal candidate will drive automation, integrate security into every stage of the Salesforce SDLC, and optimize CI/CD pipelines using Copado or similar platforms.



Key Responsibilities

Design, implement, and manage CI/CD pipelines for Salesforce applications (Copado or other CI/CD platforms).

Integrate DevSecOps practices to embed security throughout the development lifecycle.

Implement and manage SCA, SAST, and DAST tools to continuously monitor and secure applications.

Enforce code quality standards via automated review, linting, and testing frameworks.

Collaborate with development, QA, and security teams to improve deployment speed, reliability, and compliance.

Monitor and maintain secure environments, ensuring regulatory and organizational compliance.

Troubleshoot and optimize build, test, and release processes.



Required Skills & Experience

Proven experience in Salesforce DevOps/DevSecOps.

Hands-on expertise with Copado or similar CI/CD platforms.

Strong knowledge of SCA, SAST, DAST tools and CI/CD integration.

Familiarity with code quality tools (SonarQube, PMD, ESLint).

Solid understanding of secure coding principles, threat modeling, and vulnerability remediation.

Experience with APEX, Lightning, and Salesforce frameworks.

Knowledge of Git-based version control systems (GitHub, GitLab, Bitbucket).

Strong collaboration and communication skills.