DevSecOps Engineer – Mobile
A leading organisation is seeking an experienced and security-focused DevSecOps Engineer with strong mobile CI/CD expertise to join a high-performing engineering team. The ideal candidate will bring deep AWS knowledge, hands-on Kubernetes and EKS experience, and a proven track record of embedding security practices throughout the software development lifecycle.
Responsibilities
- Design, implement, and maintain secure CI/CD pipelines for mobile applications across Android and iOS platforms using tools such as Fastlane, Bitrise, and GitHub Actions.
- Manage and optimise containerised workloads using Kubernetes and Amazon EKS, ensuring scalability, resilience, and performance.
- Own infrastructure provisioning and management through Terraform, following infrastructure-as-code best practices.
- Integrate and enforce SAST and DAST security testing across all pipeline stages to identify and remediate vulnerabilities early in the development lifecycle.
- Deploy and manage backend and frontend applications across AWS environments, ensuring seamless, automated, and secure release processes.
- Leverage AWS services including EKS, Lambda, S3, IAM, Secrets Manager, CloudWatch, and related tooling to support platform operations.
- Collaborate closely with development, QA, and security teams to embed DevSecOps culture and practices across the organisation.
- Monitor platform health, respond to incidents, and continuously improve pipeline efficiency and security posture.
- Adapt quickly to evolving project requirements, technologies, and team priorities in a fast-paced delivery environment.
Qualifications and Skills
- 5–8 years of experience in a DevOps, DevSecOps, or Platform Engineering role.
- Strong hands-on expertise with AWS — EKS, Lambda (nice to have), S3, IAM, CloudWatch, and related services.
- Proven experience building and maintaining mobile CI/CD pipelines for both Android and iOS.
- Deep knowledge of Kubernetes and Amazon EKS in production environments.
- Proficiency in Terraform for infrastructure provisioning and management.
- Mandatory experience with SAST and DAST tools — such as SonarQube, Checkmarx, OWASP ZAP, or equivalent.
- Experience deploying and managing both backend and frontend applications across cloud environments.
- Strong understanding of security frameworks, shift-left security principles, and DevSecOps best practices.
- Highly adaptable with the ability to thrive in dynamic, fast-moving environments.
- Excellent communication and cross-functional collaboration skills.
Preferred Attributes
- AWS certifications (e.g., Solutions Architect, DevOps Engineer Professional).
- Experience in regulated industries such as banking or financial services.
- Familiarity with monitoring and observability tools such as Datadog, Prometheus, or Grafana.
- Exposure to GitOps practices and tools such as ArgoCD or Flux.
Halian Group: With over 28 years of experience, we have come to understand that innovation is the only way to provide agile, practical solutions that transform businesses and careers. Our resourcing and smart services help you to realise tomorrow's potential. Discover the amazing things possible when you bring the right people and the right technologies together. At Halian, we recognise that diversity, equity, and inclusion (DEI) are essential to building high-performing teams for our clients. We are committed to connecting organisations with top talent from all backgrounds, ensuring that every individual feels valued, respected, and empowered to contribute their unique perspectives. We encourage applications from all qualified candidates, regardless of race, gender, disability, or any other characteristic that makes them unique. By fostering diverse and inclusive workplaces, we help our clients drive innovation, enhance collaboration, and better reflect the communities they serve. #LI-CC1
