Lead DevSecops Engineer

Job Description:

Description:

Are you passionate about IT, experienced in software development techniques and convinced by the business added value of digitalization?

Airbus is looking for several DevSecOps Engineers to join in Bangalore, India.

One key component of this Digital Transformation is the implementation of solutions to enable the data-value chain in Airbus and its Division and to make the best use of Data in Airbus, whether to optimize our business processes or to create new business values via data monetization

Challenges are numerous and exciting! Help us Drive Digitalization!.

Your Role

As a member of our growing DevOps Engineering team, your responsibility is the day to day development and continuous enhancement of the Airbus Digital Platform as a Service (PaaS) layer to meet the demands of our business. The PaaS layer offers business projects across all program lines the vital building blocks they need to create new solutions for either new business services or increasing operational excellence. 

To be successful, you must have an automation-first mindset and deep expert knowledge in one of the core technical domains of our platform (Cloud, Container Orchestration, Big Data, API Management) as well as sound knowledge in one of the other areas. In your role, you are part of a scrum development team and build services jointly with members of other disciplines.

 

 

Qualifications:

This is an excellent opportunity to take ownership of platform ,infrastructure  and strategy in a mid-level role while working in a collaborative environment.

Atleast 7 years of experience with a minimum of Bachelor in engineering degree. 

You'll own significant security initiatives while deepening your expertise in our stack: .NET applications, OpenShift clusters, GitHub workflows, Artifactory artifact management, Ansible infrastructure-as-code, Active Directory, and SQL Server/PostgreSQL databases.

Key Responsibilities

CI/CD  Pipeline management & Security

• Set up and configure GitHub and GitHub Actions; manage repositories, branching strategies, access controls

• Establish CI/CD pipeline architecture with security gates integrated (not separate)

• Manage build agents, artifact storage (Artifactory), and deployment processes

• Implement SAST/DAST scanning, container image scanning, secret management as part of normal pipeline operations

• Own pipeline uptime, performance, and reliability

• Troubleshoot pipeline failures and security gate issues

• Manage secrets, credentials, and access tokens across all pipelines

Container & OpenShift Security

• Design and implement OpenShift security architecture (RBAC, network policies, pod security standards, SecurityContextConstraints)

• Establish container image hardening standards and scanning policies for .NET & nodejs(angular) workloads

• Monitor and secure container registries; prevent unauthorized or vulnerable images from being deployed

• Implement OpenShift cluster security baseline and runtime security controls

• Conduct security reviews of container deployments and recommend improvements

• Lead incident response for container and orchestration security issues

Infrastructure Security & Compliance

• Design and maintain Ansible playbooks for infrastructure provisioning and management

• Set up and manage infrastructure automation for consistency and repeatability

• Implement security controls through IaC (not manual configurations)

• Version control and manage all infrastructure code

• Establish standards for IaC across the organization

• Automate routine operational tasks (backups, patching, scaling, monitoring)

• Drive security improvements through infrastructure-as-code practices

Database Administration & Security

• Manage MS SQL Server and PostgreSQL: setup, configuration, patching, updates, backups

• Design database architecture for performance and availability

• Implement security controls: encryption, access controls, auditing, backups

• Monitor database performance and troubleshoot issues

• Manage database users, roles, and permissions

• Implement disaster recovery and backup strategies

• Ensure compliance with data protection requirements

Windows & Linux Infrastructure

• Manage and operate Windows and Linux servers: provisioning, patching, updates, hardening

• Implement security baselines and configuration standards

• Monitor system health, performance, and security

• Troubleshoot infrastructure issues

• Implement monitoring, logging, and alerting across all systems

• Manage patches and security updates (vulnerability scanning, prioritization, deployment)

Incident Response & Troubleshooting

• Own on-call responsibilities for infrastructure and application issues

• Troubleshoot and resolve production incidents (application failures, infrastructure issues, security events)

• Investigate and respond to security incidents

• Conduct root cause analysis and implement fixes

• Create runbooks and documentation for recurring issues

• Implement monitoring and alerting to catch issues early

Architecture & Strategy

• Work with the infrastructure team to define security requirements for new products and services

• Design security architecture for .NET applications, OpenShift deployments, and infrastructure

• Develop and maintain security standards, policies, and runbooks

• Lead security reviews and threat modeling sessions

• Mentor junior team members on DevSecOps practices and security best practices

 

Technical Competencies

You must have hands-on, proven experience operating and managing (not just designing) these systems in production:

• Linux & Windows Administration: Deep proficiency with command line, system administration, troubleshooting, patching, monitoring, performance tuning

• OpenShift/Kubernetes: Production experience setting up, operating, and troubleshooting container clusters; understand networking, storage, resource management

• CI/CD Pipeline Management: Experience building and operating CI/CD pipelines; understand build processes, artifact management, deployment orchestration

• Infrastructure-as-Code: Hands-on experience with Ansible, Terraform, or similar; able to write, test, and troubleshoot IaC in production

• Container Technologies: Experience building, deploying, and managing containerized applications; understand images, registries, runtime management

• Database Administration: Hands-on experience with MS SQL Server and/or PostgreSQL; setup, configuration, backup, recovery, performance tuning, patching

• Scripting & Automation: Proficiency in Bash, PowerShell, Python, Go; able to build operational automation and troubleshooting tools

• Active Directory & Identity: Experience managing AD environments; user/group management, group policies, access controls, troubleshooting

• On-Call Operations: Experience being on-call; comfortable responding to and resolving production incidents; understand SLAs and incident management

• Monitoring & Observability: Experience setting up monitoring, alerting, logging, and troubleshooting infrastructure issues

• Version Control & Git: Proficiency with Git workflows, branching strategies, code review processes

Soft Skills

• Strong communication and leadership abilities

• Ability to work collaboratively with cross-functional teams

• Problem-solving mindset and security-focused thinking

• Commitment to continuous learning and staying current with security trends

• Attention to detail and ability to document solutions for others

Success Metrics

• Consistently ensure the on-time delivery and quality (first-time-right) of the projects

• Bring innovative cost effective solutions

• Achieve the customer satisfaction

This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.

Company:

Airbus India Private Limited

Employment Type:

Permanent

-------

Experience Level:

Professional

Job Family:

Digital

By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus.
Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.

Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to emsom@airbus.com.

At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.