Lead DevSecOps Engineer

Platform & DevOps Leadership · Architect and lead an integrated DevOps stack that unites embedded firmware, OTA updates, edge-cloud pipelines, and distributed cloud infra. · Design and operate multi-cloud infrastructure (AWS/GCP/Azure) optimized for agility, scale, and cost. · Build developer platforms that shorten release cycles, increase test coverage, and automate provisioning from firmware to backend. · Lead AI-driven automation from anomaly prediction in build/test pipelines to intelligent resource allocation and reliability forecasting. Security Ownership · Lead end-to-end security strategy, device identity, PKI, firmware signing, SBOMs, secrets management, IAM, and real-time threat detection. · Embed security into DevOps pipelines (“shift-left” security): automated scanning, compliance-as-code, and zero-trust enforcement. · Design AI-assisted threat detection and response pipelines leveraging telemetry data from devices and cloud workloads. · Foster a culture of secure-by-default in every commit, deploy, and design review. Cross-Functional Execution · Partner with Firmware, Cloud, Data, and Product teams to release rapidly while keeping stability uncompromised. · Translate complex reliability or security issues into business-impact language. · Be the bridge between engineering and operations: someone who’s equally comfortable debugging a CI pipeline or influencing product strategy. · Lead blameless postmortems and convert learnings into automation or detection logic. Leadership & Culture · Build and lead a small, elite team of DevOps, SRE, and Security Engineers. · Model “own it like a boss” behaviour, full accountability from root-cause to fix to prevention. · Drive the mindset of next best: constant iteration, eliminating toil, and finding smarter (often AI-assisted) ways to operate. · Promote “thinking systems-first”, build once, automate forever. · 15+ years of experience in DevOps/SRE/Security, including hands-on time building and scaling systems (not just managing teams). · Proven experience with embedded or IoT devices + cloud integration, OTA, telemetry, provisioning, and monitoring. · Deep knowledge of Kubernetes, Terraform/IaC, CI/CD pipelines, and observability stacks (Prometheus, Grafana, Loki, CloudWatch, etc.). · Strong foundation in cloud security (IAM, KMS, policy-as-code) and device security (secure boot, cert rotation, firmware signing). · Hands-on programming in Python, Go, or TypeScript; experience automating with APIs, SDKs, or LLM-based ops tools. · Strategic understanding of AI-native infrastructure applying ML to detect drift, anomalies, security patterns, or automate responses. · Grit, speed, and communication: you make things happen, align people fast, and fix issues yourself when needed.