ARCHIVED
This job listing has been archived and is no longer accepting applications.
MisuJob - AI Job Search Platform MisuJob
Login Sign Up

Dev Ops AppSec & Security Engineer

GXA

Sri Lanka Remote contract

Posted: December 18, 2025

Interested in this position?

Create a free account to apply with AI-powered matching

Register to Apply

Quick Summary

This role is responsible for embedding security best practices into the application lifecycle and ensuring robust, compliant solutions.

Required Skills

Secure Coding Vulnerability Management Code Reviews Static Analysis Dynamic Analysis Security Tools Authentication Authorization Encryption Threat Modeling Incident Response

Job Description

Role Summary

The Dev/Ops AppSec & Security Engineer is a hybrid role supporting both the Application Support

Team and the Security Team. This position is responsible for embedding security best practices into

the application lifecycle, while also serving as a core resource for organizational security initiatives.

The engineer collaborates closely with the Virtual Information Security Manager (vISM) and other

security stakeholders to drive vulnerability management, penetration test remediation, and

comprehensive security assessments. This role ensures that solutions are robust, compliant, and

resilient against threats, and that security objectives are met across both application and

infrastructure domains.

Core Responsibilities

Application Security

• Guide developers and engineers on secure coding standards and practices.

• Perform code reviews and static/dynamic analysis to identify vulnerabilities.

• Integrate security tools into CI/CD pipelines for automated scanning and compliance.

• Design and implement authentication, authorization, and encryption for APIs and

applications.

• Assess and remediate risks in REST/SOAP integrations, data pipelines, and custom

applications.

Security Engineering (Security Team Support)

• Collaborate with the vISM and Security Team to manage vulnerability identification, tracking,

and remediation across applications and infrastructure.

• Coordinate and support penetration testing activities, including scoping, execution, and

remediation of findings.

• Conduct security assessments for new and existing systems, documenting risks and

recommending mitigation strategies.

• Develop and maintain threat models for applications and infrastructure.

• Respond to security incidents, perform root-cause analysis, and document lessons learned.

• Support compliance initiatives (e.g., GDPR, HIPAA, PCI-DSS) and assist with audit preparation

and evidence collection.Security Automation & Monitoring

• Build and maintain security automation scripts and workflows (e.g., for vulnerability scanning,

alerting, and compliance checks).

• Integrate security monitoring into Azure Pipelines, Data Factory, and related services.

• Maintain comprehensive security documentation, diagrams, and operational procedures.

Cross-Team Collaboration

• Work with Business Analysts to translate security requirements into actionable specifications.

• Educate stakeholders on security risks, trade-offs, and mitigation strategies.

• Participate in client meetings to address security concerns and present solutions.

Required Skills & Experience

• Proficiency in secure coding, application security frameworks (OWASP, NIST), and

vulnerability management.

• Experience with security tools (SAST, DAST, dependency scanning, SIEM).

• Strong understanding of authentication, authorization, and encryption protocols.

• Familiarity with CI/CD pipelines, Azure DevOps, and security automation.

• Experience with penetration testing methodologies and remediation processes.

• Ability to investigate, respond to, and remediate security incidents.

• Skill in root-cause analysis and forensic investigation.

• Ability to explain technical security concepts to non-technical stakeholders.

• Experience working with cross-functional teams (engineering, business analysis, operations,

security).

Preferred Experience

• Experience with cloud security (Azure preferred), API security, and data protection.

• Background in software development or DevOps environments.

• Familiarity with regulatory compliance frameworks and client-facing security reviews.

• Experience in consulting or Managed Service Provider (MSP) environments.

How This Role Complements the Team:

• Ensures solutions designed by the Business Analyst and built by the Dev/Ops Engineer are

secure, compliant, and resilient.• Bridges technical and business requirements, proactively addressing risks and enabling

secure innovation.

• Strengthens the organization’s overall security posture by supporting vulnerability

management, pentest remediation, and security assessments in partnership with the vISM

and Security Team.

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Create Free Account Sign In
← Browse all jobs
Register to Apply