Senior Engineer – DevSecOps

Senior DevSecOps Engineer, Core42, Abu Dhabi – UAEAbout UsCore42, a leader in AI-powered cloud and digital infrastructure, is driving transformative technology solutions globally. Leveraging advanced resources and partnerships, Core42 empowers clients to harness sovereign AI infrastructure, especially in sectors with stringent regulatory needs. With a mission to redefine digital transformation, we combine sovereign capabilities with scalable, high-performance compute infrastructure, positioning ourselves at the forefront of AI innovation in the Middle East and beyond.The OpportunityThe Senior DevSecOps Engineer will play a pivotal role in designing, implementing, and maintaining secure, scalable, and automated DevSecOps pipelines across cloud and on-prem environments.This role ensures that security is fully embedded across the entire SDLC, from infrastructure provisioning (IaC) to deployment, monitoring, and incident response. The position demands hands-on experience with automation, cloud security, CI/CD, and secure coding practices—while collaborating closely with development, operations, and security teams to drive a culture of “security as code.”ResponsibilitiesDesign, build, and maintain secure CI/CD pipelines for continuous integration and delivery.Integrate automated security checks (SAST, DAST, SCA, secret scanning) into build and deployment workflows using open-source and commercial tools.Champion “shift-left” security by embedding controls early in the development lifecycle.Develop and maintain Infrastructure as Code (IaC) using tools such as Terraform, Ansible, and other automation frameworks.Implement configuration management and drift detection across multi-environment deployments.Ensure secure configuration and monitoring of cloud environments (Azure, G42 Cloud, and others).Enforce cloud security best practices using CIS Benchmarks and other frameworks.Review and secure IaC templates (Terraform, CloudFormation, Ansible) to prevent misconfigurations and enforce Policy-as-Code using tools like Open Policy Agent (OPA).Work with cloud engineering teams to remediate misconfigurations and vulnerabilities.Participate in threat modeling, vulnerability assessments, and penetration testing efforts.Harden container images and Kubernetes clusters; implement runtime security, image scanning, and RBAC using tools like Aqua, Clair, Trivy, or Falco.Collaborate with security teams to identify, triage, and remediate vulnerabilities across infrastructure, applications, and dependencies; integrate scanners into DevOps workflows.Develop scripts and automation for security operations and compliance checks using Python, Bash, or Go.Implement secure secrets management using Vault, Azure Key Vault, or equivalent tools, enforcing least-privilege access.Maintain comprehensive documentation of security controls, configurations, runbooks, and architecture.Collaborate with developers, SREs, and security engineers to promote secure coding and deployment practices; conduct training and contribute to security awareness initiatives.QualificationsWhat We’re Looking For Required Skills / QualificationsProven experience in DevSecOps, cybersecurity, and infrastructure automation.Deep familiarity with SDLC processes, Infrastructure as Code (Terraform, Ansible, etc.), and configuration management.Strong knowledge of cloud security best practices and cloud-native security tooling.Experience applying Policy-as-Code using OPA or similar tools.Ability to conduct and automate comprehensive security assessments (network, infrastructure, application/API, Kubernetes, containers, cloud compliance).Proficiency in scripting and automation (Python, Bash, PowerShell, etc.).Excellent communication skills with the ability to present findings clearly to both technical and non-technical stakeholders. Preferred Skills / QualificationsHands-on experience with Kubernetes security (runtime security, RBAC, image scanning).Familiarity with major cloud platforms including Azure, AWS, and G42 Cloud.Knowledge of modern DevOps practices and secure CI/CD architecture.Certifications such as CDP, CKA, CKS, OSCP, CRTP, or equivalent are advantageous.What Working At Core42 OffersWith a diverse team of 1,100+ employees from 68 nationalities, we foster an inclusive, innovative, and collaborative environment. At Core42, we cultivate a culture grounded in trust, accountability, and high performance. We are united by our values:Grit – overcoming challenges with resilience and determinationPassion – driving excellence in everything we doImpact – creating meaningful change and inspiring progressOur team members thrive in an environment where everyone’s contributions propel us forward.Benefits IncludeCompetitive SalaryAnnual Performance BonusEsaad & Fazaa Discount CardsPremium Family Medical, Dental, Vision, and Life InsuranceAccess to leading Learning & Development platforms with unlimited premium courses