Role Summary: The Full Stack & DevSecOps Architect is responsible for designing, governing, and scaling secure, cloud-native application platforms and CI/CD ecosystems across enterprise environments. This role owns end-to-end architecture from application code to cloud infrastructure ensuring automation, security, compliance, and observability are embedded throughout the SDLC.
The architect works across AWS (primary), GitHub/GitLab, container platforms, and enterprise DevSecOps tooling to deliver highly scalable, resilient, and secure pipelines that support both cloud-native and hybrid workloads. This role also provides technical leadership, pre-sales support, and transformation guidance for large-scale DevOps and DevSecOps initiatives.
This role is synthesized from Cloud Solutions Architect (DevSecOps & Containers) and Lead DevSecOps Engineer (Enterprise CI/CD) responsibilities
Key responsibilities:
1. End-to-End DevSecOps Architecture:
• Architect enterprise-scale CI/CD pipelines using GitLab CI/CD, and cloud-native pipelines
• Define reference architectures for DevOps and DevSecOps across multiple application stacks (microservices, APIs, UI, backend services)
• Drive shift-left security, quality, and compliance across the SDLC
2. Cloud & Platform Architecture (AWS-centric)
• Familiar with cloud foundations across compute, storage, networking, IAM, and security
• Architect solutions on AWS (EKS, ECS, Fargate, EC2, Lambda) with hybrid and multi-cloud considerations
3. Infrastructure as Code (IaC) & Automation
• Lead IaC strategy using Terraform, CloudFormation, and configuration management tools
• Standardize environment provisioning, drift detection, and policy enforcement
• Enable self-service platforms for development teams
4. Security, Compliance & Governance
• Embed SAST, DAST, SCA, container scanning, secrets detection into CI/CD pipelines
• Align DevSecOps controls with NIST, SOC2, ISO 27001, PCI, HIPAA, NYDFS, and enterprise compliance requirements
• Partner with InfoSec, Risk, and Compliance teams to automate policy enforcement
5. Observability & Reliability Engineering
• Architect enterprise observability using Datadog, CloudWatch, ELK
• Enable logging, metrics, tracing, RUM, and alerting across applications and platforms
• Drive SRE practices including SLIs, SLOs, and error budgets
6. Full Stack Enablement
• Collaborate with application teams across frontend, backend, APIs, and microservices
• Enable secure build, test, deploy pipelines for Java/.Net and UI frameworks
• Guide teams on secure coding, testing automation, and release management strategies
7. Leadership
• Act as technical authority and mentor for DevOps and DevSecOps teams
• Lead PoCs, workshops, and client architecture sessions
• Create reusable architecture artifacts, templates, accelerators, and best practices
Requirements:
• 12+ years overall IT experience
• 6+ years in Cloud, DevOps, or DevSecOps architecture roles
• Proven experience delivering large-scale enterprise CI/CD platforms
Core Technical Skills
• Cloud: AWS (primary)
• CI/CD: GitLab CI/CD, TeamCity
• Source Control: GitLab, Bitbucket
• IaC: Terraform
• Containers: Kubernetes, EKS/OpenShift
• Security: SonarQube, Checkmarx, Veracode, Snyk, Trivy (or similar)
• Observability: Datadog, CloudWatch, ELK
• Languages: Java/.Net
Soft Skills
• Strong architecture thinking and system design mindset
• Ability to translate technical solutions into business value
• Executive-level communication and stakeholder management
• Mentoring and cross-team leadership skills
Certifications (Strongly Preferred / Required): AWS Certified Solutions Architect (Professional preferred), Cloud Security or DevSecOps certifications
