DevSecOps Lead Engineer - Must have SaaS background

Please note - Looking for highly qualified, dynamic, motivated and hands on DevSecOps leader who can work onsite in our Hi-Tech city office. Should be able to build a team with 2-3 additional engineers.

Role: DevSecOps Lead Engineer

Position Overview

SimplifyVMS is seeking an experienced DevSecOps Lead Engineer with over 10 years of proven expertise in building and securing global, multi-tenant SaaS platforms . The ideal candidate will have deep hands-on experience in DevSecOps practices, automation, and cloud-native security within an AWS environment , coupled with a strong technical background in the MEAN stack (MongoDB, Express.js, Angular, Node.js) and MACH architecture (Microservices, API-first, Cloud-native, Headless).

This leadership role will oversee the design, implementation, and continuous improvement of secure CI/CD pipelines, cloud infrastructure, and application security across SimplifyVMSs global SaaS offerings.

Key Responsibilities

DevSecOps Leadership

• Lead and mentor the DevSecOps team, driving a security by design culture across engineering.
• Define and implement DevSecOps strategies aligned with MACH principles for global SaaS platforms.
• Partner with development, QA, product, and infrastructure teams to integrate security at every stage of the SDLC.

Cloud & Infrastructure Security

• Architect and secure highly available, multi-tenant AWS cloud environments.
• Design infrastructure as code (IaC) using Terraform/CloudFormation.
• Implement robust monitoring, logging, and alerting strategies (e.g., CloudWatch, ELK, Prometheus).

Application & Data Security

• Embed automated security scanning and compliance validation into CI/CD pipelines.
• Ensure secure APIs, microservices, and containerized workloads across Kubernetes/ECS/EKS.
• Apply advanced security practices for MongoDB and MEAN stack applications in a multi-tenant context.

Compliance & Governance

• Ensure compliance with global regulatory frameworks (e.g., GDPR, SOC 2, ISO 27001).
• Develop and enforce policies for identity and access management, data protection, and incident response.

Innovation & Optimization

• Evaluate and implement modern DevSecOps tools for vulnerability management, secrets management, and SAST/DAST.
• Drive continuous improvement initiatives in automation, scalability, and cost optimization.

Required Skills & Qualifications

• Experience : 10+ years in DevOps/DevSecOps, with at least 5 years leading security-driven initiatives for global SaaS platforms .
• Architecture : Deep understanding of MACH architecture and microservices in multi-tenant SaaS contexts.
• Cloud : Advanced AWS expertise (VPC design, IAM, EKS/ECS, Lambda, S3, RDS, CloudFront, Route 53, WAF, GuardDuty, etc.).
• CI/CD : Proven experience with CI/CD pipelines (Jenkins, GitLab CI, GitHub Actions, or equivalent) with integrated security gates.
• Containers & Orchestration : Strong Kubernetes/Docker knowledge, including securing workloads in production.
• Security Tooling : Hands-on experience with tools like SonarQube, Snyk, Aqua, Prisma Cloud, HashiCorp Vault, etc.
• Programming/Stack : Strong foundation in MEAN stack with security-focused coding practices.
• IaC & Automation : Proficiency with Terraform/CloudFormation and scripting (Python, Bash, etc.).
• Soft Skills : Strong leadership, communication, and cross-functional collaboration abilities.

Preferred Qualifications

• Certifications such as AWS Certified Security Specialty , CISSP , CISM , or Certified Kubernetes Security Specialist (CKS) .
• Prior experience securing multi-tenant SaaS systems at scale .
• Familiarity with DevSecOps maturity frameworks and security governance in global enterprises.

Why Join SimplifyVMS?

• Be part of a global SaaS leader revolutionizing vendor management with a cutting-edge MACH-based architecture .
• Lead security and DevSecOps strategy in a high-growth, multi-tenant environment .
• Collaborate with world-class engineers across MEAN stack, AWS cloud, and modern DevSecOps tooling.
• Opportunity to shape and secure a next-generation platform used by enterprises worldwide.