DevSecOps Manager
Qureos
Description
Job Title: DevSecOps Manager
Department: Digital Infrastructure & Systems
Reports To: Head of Digital Infrastructure & Systems
Job Summary:
We are seeking a highly skilled and experienced DevSecOps Section Manager to
establish, lead, and manage the enterprise DevSecOps practice within our Digital
Infrastructure & Systems Department.
The role is responsible for building and operating a modern DevSecOps ecosystem that
supports government-scale digital services and hybrid multi-cloud environments across on
premises and public cloud platforms. The ideal candidate must combine strong leadership
and people management capabilities with deep hands-on technical expertise in
Kubernetes/OpenShift, GitLab CI/CD, cloud platforms, automation, security integration, and
observability solutions.
This position will lead the DevSecOps strategy, governance, automation frameworks, CI/CD
pipelines, container platforms, and developer enablement initiatives while ensuring
compliance, scalability, security, and operational excellence.
Key Responsibilities:
Leadership & Management
- Establish and lead the DevSecOps Section, including organizational structure,
operating model, and roadmap.
- Build, mentor, and manage a high-performing DevSecOps engineering team.
- Define team KPIs, SLAs, technical standards, and governance processes.
- Manage project delivery timelines, resource planning, workload prioritization, and
stakeholder expectations.
- Drive Agile and DevSecOps culture adoption across internal teams and government
entities.
- Coordinate with Infrastructure, Security, Operations, Digital, and Architecture teams
to ensure seamless integration and service delivery.
- Conduct performance management, coaching, technical mentoring, and capability
development for engineers.
- Lead vendor coordination, technical workshops, onboarding, and enterprise platform
adoption initiatives.
Technical & Platform Responsibilities
DevSecOps Platforms & CI/CD
- Design, implement, and manage enterprise CI/CD platforms using GitLab and related
DevOps toolchains.
- Build secure CI/CD pipelines with integrated security scanning, compliance
validation, and automated testing.
- Implement Infrastructure as Code (IaC) and GitOps methodologies.
- Standardize DevSecOps onboarding frameworks for applications and development
teams.
Container Platforms & Kubernetes
- Manage enterprise Kubernetes/OpenShift environments using Red Hat OpenShift.
- Lead container platform architecture, multi-cluster operations, governance,
scalability, resiliency, and platform security.
- Support containerized workloads, microservices, and platform engineering initiatives.
- Implement enterprise-grade backup, DR, HA, storage integration, and monitoring for
container platforms.
Cloud & Hybrid Infrastructure
- Manage DevSecOps integration across hybrid cloud platforms including Microsoft
Microsoft Azure and private cloud infrastructure.
- Enable secure cloud-native application deployment pipelines.
- Implement automation and orchestration across cloud and on-premise platforms.
- Support multi-cloud operational models and cloud governance standards.
Security & Compliance
- Embed security controls into the software delivery lifecycle (DevSecOps approach).
- Integrate SAST, DAST, container security, secrets management, vulnerability
management, and compliance automation into CI/CD pipelines.
- Ensure alignment with cybersecurity and digital sovereignty standards.
- Collaborate with Security Operations and GRC teams on risk remediation and
compliance initiatives.
Observability & Monitoring
- Lead enterprise observability and monitoring strategy implementation.
- Implement centralized logging, tracing, monitoring, and performance analytics
platforms.
- Integrate observability solutions across Kubernetes, cloud, middleware, applications,
and infrastructure layers.
- Driv