About the Role:
Diamond Trust Bank is seeking a Senior Cloud & DevSecOps Engineer.
This role reports directly to the Head of Cloud Engineering and collaborates closely with Architecture, Cybersecurity, Product Delivery, and Engineering teams.
The Senior Cloud & DevSecOps Engineer will be responsible for building, automating, and securing the multi-cloud DevSecOps platform that supports the bank's digital applications. The ideal candidate is a hands-on engineer who understands cloud-native architectures, compliance-driven automation, secure CI/CD toolchains, and observability patterns that meet regulatory and audit standards.
Together, let's enable secure, scalable, and compliant digital solutions that power the future of financial services.
Key Responsibilities:
Provide expert technical leadership in the design and implementation of secure CI/CD workflows and cloud-native infrastructure.
Design and manage secure CI/CD pipelines using Tekton, ArgoCD, and GitOps workflows to ensure traceable and auditable deployments.
Enforce Infrastructure-as-Code practices using Terraform and Crossplane with Open Policy Agent (OPA) for compliance validation.
Automate SAST, DAST, SBOM scanning, artifact signing, and vulnerability gating using Veracode, Trivy etc.
Integrate AWS GuardDuty, Security Hub, Azure Security Center, Sentinel, and other cloud security controls for enhanced security monitoring.
Implement OpenTelemetry-based observability to ensure audit-grade traceability for SOC2, PCI DSS, and regulatory compliance.
Collaborate across engineering, security, compliance, and business teams to ensure alignment of priorities and solutions.
Personal Competencies:
Strong analytical and problem-solving ability.
Leadership and mentoring capability with a collaborative mindset.
High attention to detail and rigor in change governance.
Ability to communicate complex technical concepts to non-technical stakeholders.
Self-driven, structured, and proactive in driving engineering excellence.
Skills & Qualifications:
Bachelor's degree in computer science, Software Engineering, or related field (or equivalent experience).
5+ years of hands-on experience in Cloud Engineering, DevOps, or Platform Engineering roles.
Strong experience with CI/CD pipelines, GitOps workflows, Terraform, and Kubernetes.
Proven experience embedding security controls into CI/CD pipelines (DevSecOps).
Experience with SAST, DAST, vulnerability scanners, and SBOM tooling.
Understanding of cloud platforms.
Familiarity with SOC 2, PCI DSS, and CBK TRM compliance is an added advantage.
Knowledge of observability platforms and Open Telemetry is desirable.
Closing Date: November 28, 2025