Sr Cloud Engineer - DevSec Ops

Making a job change is a big decision. Why consider Aptos?

You will join a team of remarkable colleagues who are committed and passionate about creating and delivering leading-edge solutions to the retail market. You will be part of an exciting growth journey where we will do everything possible to help you reach and exceed your career dreams. Our colleagues have access to industry-leading training and development opportunities, and the chance to work in a global, diverse culture with offices in 13 countries. You will be part of an inclusive culture that is grounded in our Company's purpose: to make a difference for every colleague, every client, every day.

With years of deep retail DNA, Aptos has been a market-leading platform that drives the world’s largest retailers’ product, promotion, commerce and merchandising decisions across online and brick-and-mortar operations. The opportunity at Aptos has never been greater, as we transition our solutions to cloud-native, microservices architecture. More than 135,000 retail locations impact nearly $2 trillion in annual revenue across fashion, grocery, drug, convenience, general merchandise, discount and sporting goods stores optimized with Aptos’ solutions. We hope you’ll be a part of taking innovative solutions to market with the leader in Unified Commerce.

Job Description:

We’re looking for a passionate and talented teammate to help lead us secure and accelerate infrastructure platform security at Revionics. If you’re passionate about cloud-native technologies with SecOps as the forefront, we would love to hear from you. We are focused on implementing advanced cloud-native technologies and practices while driving the continuous delivery posture of the organization. 

Our ideal candidate is a self-starter and has excellent communication skills. Our collaborative environment relies heavily on innovation, technical savvy, and problem-solving skills. This is a full-time position in-office at our Bangalore, India location. As a Sr DevSecOps Engineer, you’ll be a major contributor to the company’s success, providing technical leadership, coordination, communication, training, system security optimization, and more. You will help ensure the effective and seamless integration of security policies and practices to DevOps workflows to reduce overall risks and deliver quality products and services.  You will work with teams across the organization to continually enhance our security posture. Your technical leadership will help drive continuous integration & delivery for our market-leading AI SaaS Products for the retail industry. 

Required Skills and Responsibilities.

• 8+ years’ experience in cloud security management and integration.
• Proficiency with cloud platforms such as Google Cloud Platform (GCP) or any other public cloud
• Deep understanding of public cloud architecture and security features.
• Expertise in conducting regular security assessments, vulnerability scans, penetration tests and risk analysis to identify and mitigate security risks.
• Experience in integrating security tools and practices into the CI/CD pipelines to ensure security is an integral part of the development and deployment process.
• Propose changes to DevSecOps technology and processes (automated security testing, CI/CD, AI integration etc) and bring these new ideas and efforts to reality.
• Manage and configure GCP security services such as IAM, VPC Service Controls, Cloud Armor, Security Command Centre, and Cloud Identity-Aware Proxy (IAP) or any other similar public cloud services.
• Experience in handling compliance with industry standards and regulations (e.g., GDPR, HIPAA, ISO 27001).
• Lead efforts to monitor, evaluate, and remediate security and compliance needs, ensure environments and related configurations meet current policies and industry standards for compliance and security.
• Expertise in adopting cloud security best practices, including encryption, identity and access management, network security, and monitoring.
• Experience in developing and maintaining automated security testing tools and scripts.
• Experience in monitoring security alerts and incidents, conduct incident response, and perform root cause analysis.
• Experience in managing vulnerabilities with enterprise tools and leading server patching efforts.
• Experience in monitoring build and deployment processes for issues, diagnosing problems, and recommending solutions to improve performance and reliability.
• Experience in collaborating with information security, development, QA, operations, and other cross-functional teams to ensure alignment and coordination of security incident closure.
• Foster an environment of transparency and open discussion, resource planning, working closely with other leaders.
• Collaborate across teams and colleagues from developers up to senior levels to drive engagement, manage risks, and ensure success.
• Experience working on creating and maintaining documentation for all security-related tasks and owing to closure.

           Certifications (Preferred):

• GCP Professional Cloud Security Engineer
• Certified Information Systems Security Professional (CISSP)
• Certified Cloud Security Professional (CCSP)

We offer a competitive total rewards package including a base salary determined based on the role, experience, skill set, and location. For those in eligible roles, discretionary incentive compensation may be awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. 

We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. By submitting an application for this job, you acknowledge that any personal data or personally identifiable information that you provide to us will be processed in accordance with our Candidate Privacy Notice.