Job Description
            
                Please note - Looking for highly qualified, dynamic, motivated and hands on DevSecOps leader who can work onsite in our Hi-Tech city office.
Should be able to build a team with 2-3 additional engineers.
Role: DevSecOps Lead Engineer
Position Overview
SimplifyVMS is seeking an experienced  DevSecOps Lead Engineer  with over 10 years of proven expertise in building and securing  global, multi-tenant SaaS platforms .
The ideal candidate will have deep hands-on experience in  DevSecOps practices, automation, and cloud-native security  within an  AWS environment , coupled with a strong technical background in the  MEAN stack  (MongoDB, Express.js, Angular, Node.js) and  MACH architecture  (Microservices, API-first, Cloud-native, Headless).
This leadership role will oversee the design, implementation, and continuous improvement of secure CI/CD pipelines, cloud infrastructure, and application security across SimplifyVMS’s global SaaS offerings.
Key Responsibilities
DevSecOps Leadership
Lead and mentor the DevSecOps team, driving a “security by design” culture across engineering.
Define and implement DevSecOps strategies aligned with MACH principles for global SaaS platforms.
Partner with development, QA, product, and infrastructure teams to integrate security at every stage of the SDLC.
Cloud & Infrastructure Security
Architect and secure highly available, multi-tenant AWS cloud environments.
Design infrastructure as code (IaC) using Terraform/CloudFormation.
Implement robust monitoring, logging, and alerting strategies (e.g., CloudWatch, ELK, Prometheus).
Application & Data Security
Embed automated security scanning and compliance validation into CI/CD pipelines.
Ensure secure APIs, microservices, and containerized workloads across Kubernetes/ECS/EKS.
Apply advanced security practices for MongoDB and MEAN stack applications in a multi-tenant context.
Compliance & Governance
Ensure compliance with global regulatory frameworks (e.g., GDPR, SOC 2, ISO 27001).
Develop and enforce policies for identity and access management, data protection, and incident response.
Innovation & Optimization
Evaluate and implement modern DevSecOps tools for vulnerability management, secrets management, and SAST/DAST.
Drive continuous improvement initiatives in automation, scalability, and cost optimization.
Required Skills & Qualifications
Experience : 10+ years in DevOps/DevSecOps, with at least 5 years leading security-driven initiatives for  global SaaS platforms .
Architecture : Deep understanding of  MACH architecture  and microservices in multi-tenant SaaS contexts.
Cloud : Advanced AWS expertise (VPC design, IAM, EKS/ECS, Lambda, S3, RDS, CloudFront, Route 53, WAF, GuardDuty, etc.).
CI/CD : Proven experience with CI/CD pipelines (Jenkins, GitLab CI, GitHub Actions, or equivalent) with integrated security gates.
Containers & Orchestration : Strong Kubernetes/Docker knowledge, including securing workloads in production.
Security Tooling : Hands-on experience with tools like SonarQube, Snyk, Aqua, Prisma Cloud, HashiCorp Vault, etc.
Programming/Stack : Strong foundation in  MEAN stack  with security-focused coding practices.
IaC & Automation : Proficiency with Terraform/CloudFormation and scripting (Python, Bash, etc.).
Soft Skills : Strong leadership, communication, and cross-functional collaboration abilities.
Preferred Qualifications
Certifications such as  AWS Certified Security – Specialty ,  CISSP ,  CISM , or  Certified Kubernetes Security Specialist (CKS) .
Prior experience securing  multi-tenant SaaS systems at scale .
Familiarity with DevSecOps maturity frameworks and security governance in global enterprises.
Why Join SimplifyVMS?
Be part of a  global SaaS leader  revolutionizing vendor management with a cutting-edge  MACH-based architecture .
Lead security and DevSecOps strategy in a  high-growth, multi-tenant environment .
Collaborate with world-class engineers across MEAN stack, AWS cloud, and modern DevSecOps tooling.
Opportunity to shape and secure a  next-generation platform  used by enterprises worldwide.