- Company Name
- Lumentum
- Job Title
- DevSecOps Engineer
- Job Description
-
**Job Title**
DevSecOps Engineer
**Role Summary**
Embed security throughout embedded software development pipelines, ensuring fast, secure delivery of optical and photonic products.
**Expectations**
- Deliver robust, secure CI/CD solutions for embedded projects.
- Automate security testing and remediation.
- Champion a DevSecOps culture across engineering, QA, and security teams.
**Key Responsibilities**
- Design, implement, and maintain secure CI/CD pipelines.
- Integrate SAST, DAST, dependency, container, and secrets scanning into workflows.
- Enforce best practices for secrets management, credential rotation, and access control.
- Collaborate with software, QA, and IT security teams to embed security by design.
- Monitor, detect, and remediate vulnerabilities during build and deployment.
- Maintain security documentation and support compliance initiatives.
- Develop automation scripts and IaC frameworks.
**Required Skills**
- 5+ years in DevOps/DevSecOps, 3+ years in secure CI/CD for embedded/software environments.
- Proficiency in Git, GitHub Actions, Jenkins, Docker, Linux, and virtualization.
- Scripting: Bash, Python, or PowerShell.
- Security tools: SonarQube, Snyk, OWASP ZAP, or equivalents.
- Strong knowledge of secure coding, IAM, vulnerability management, and cryptography (asymmetric encryption, certificates).
- Experience in secrets management and credential rotation.
**Required Education & Certifications**
- Bachelor’s degree or higher in Computer Science, Engineering, Physics, optics, or semiconductor technology.
- Relevant security or DevOps certifications (e.g., CISSP, CISM, OSCP, GCP/AWS Cloud Practitioner) are a plus.