DevSecOps Manager

About the position

As our DevSecOps Manager, you will steer the evolution of secure, automated, and highly resilient cloud-native delivery within our Comapny IT Insurance division. This senior role balances high-level strategic governance with technical architecture. You will lead an elite team of DevOps, SRE, and security engineers-fostering a "security by design" culture that enables rapid innovation while maintaining a bulletproof compliance posture in a highly regulated global and South African landscape.



Key Responsibilities



AWS Cloud Architecture & Security Governance

• Design, implement, and govern secure AWS multi-account architectures (Control Tower, VPCs, EKS, Lambda, RDS) using Infrastructure as Code (Terraform, CloudFormation, CDK).
  
  
• Enforce absolute least-privilege IAM, KMS encryption, secrets management, and data sovereignty aligned to POPIA Condition 7 and the Cybercrimes Act.
  
  
• Maximize AWS-native security services including GuardDuty, Amazon Inspector, Security Hub, Config, and IAM Access Analyzer.
  
  

CI/CD Automation & Infrastructure Engineering

• Build and optimize automated, secure CI/CD pipelines (AWS CodePipeline, GitLab) embedded with automated security gates (SAST, DAST, SCA, secret, and container scanning).
  
  
• Oversee containerization and orchestration workflows (Docker, Kubernetes, Helm) to guarantee stable, consistent environments.
  
  
• Drive engineering efficiency by eliminating toil, automating repetitive tasks, and building frictionless self-service developer tools.
  
  

Monitoring, Observability & Incident Response

• Architect an intelligent, comprehensive monitoring and alerting ecosystem using AWS CloudWatch, X-Ray, EventBridge, and SIEM integrations.
  
  
• Design sophisticated alert routing, escalation, and noise reduction protocols to ensure 24/7 visibility into our performance and security posture.
  
  

Leadership, Compliance & Risk Management

• Lead, mentor, and elevate a high-performing team of engineers, championing a culture of shared ownership and continuous automation.
  
  
• Define, track, and report on key engineering metrics: Vulnerability remediation time, security gate pass rates, MTTR, and deployment frequency.
  
  
• Direct regular penetration testing programs, risk-based vulnerability prioritization, and lead the technical evidence collection for corporate audits.
  
  

Education & Certifications

• Degree: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Engineering, or a related field.
  
  
• Cloud Certifications (At least one preferred): AWS Certified Security - Specialty or AWS Certified DevOps Engineer - Professional.
  
  
• Security Certifications (Advantageous): CISSP, CISM, CCSP, or CISA.
  
  

Experience Profile

• 8-10+ years of deep technical experience across DevOps, Cloud Engineering, or Cybersecurity environments.
  
  
• 3-5+ years in an explicit technical leadership or engineering management role.
  
  
• Proven track record operating within heavily regulated industries (e.g., Financial Services, Insurance, Fintech) with strict POPIA / GDPR compliance requirements.
  
  

Essential Technical Skills

• Natively fluent in cloud infrastructure automation (Terraform, Ansible) and scripting (Python, Bash, or PowerShell).
  
  
• Expert-level grasp of Linux administration, advanced networking, and Git workflows.
  
  
• Strong familiarity with penetration testing methodologies, runtime protection, and Zero-Trust implementation architecture.
  
  

Desired Skills:

• evOps
• Cloud Engineering
• or Cybersecurity
• AWS-native
• infrastraucture
• CI/CD pipelines