Senior Engineer DevSecOps

**About Presight** Presight is an ADX\-listed public company with Abu Dhabi based G42 as its majority shareholder and is the region’s leading big data analytics company powered by GenAI. It combines big data, analytics, and AI expertise to serve every sector, of every scale, to create business and positive societal impact. Presight excels at all\-source data interpretation to support insight\-driven decision\-making that shapes policy and creates safer, healthier, happier, and more sustainable societies. Today, through its range of GenAI\-driven products and solutions, Presight is bringing Applied AI to the private and public sector, enabling them to realize their AI strategy and ambitions faster. **The Opportunity:** We are seeking a Senior DevSecOps Engineer to design, build, and maintain security configurations for our DevOps platforms, CI/CD pipelines, Kubernetes and IaC . Your mission is to en\=mbending DEVSecOps practices into development workflows, ensuring that security gates and configurations effective, automated and aligned with delivery velocity. **Key Responsibilities:** * **GitLab and GitHub Secure:** SAST, DAST, IaC, Dependency Scanning, Secret Detection, Container Scanning * **Pipeline Architecture:** Design, implement, and maintain secure CI/CD pipelines and reusable templates in GitLab (Enterprise and Community version) and GitHub. * **Collaborate** with internal teams to propose, architect and implement innovative \& transformational solutions for Security. Acts as a bridge between security and engineering, ensuring security is adopted — not bypassed. * **Infrastructure as Code (IaC):** Design and implement security configurations to scalable cloud infrastructure using **IaC** . * **Security tools:** Integrate security tools (Fortify, Trivy, ZAP, Tenable) into CI/CD pipelines * **Security Integration into Development:** Analyze existing development pipelines and integrate security controls without disrupting delivery workflows. Embed DevSecOps practices into SDLC (shift\-left approach). Optimize pipeline performance to minimize latency introduced by security checks * **Vulnerability \& Exception Handling:** Review and validate pipeline findings (SAST, SCA, container, etc.). Reduce false positives in collaboration with Source Code Reviewers. Approve, deny, or time\-box exceptions with full audit traceability. Ensure no critical vulnerabilities reach production without control * **Visibility \& Reporting:** Build and maintain security posture dashboards across environments. Provide unified visibility of vulnerabilities. Track remediation trends and pipeline efficiency metrics * **Innovation \& AI:** Collaborate with internal teams to propose, architect, and implement innovative, AI\-driven integrations with DevOps platforms. **Requirements:** * Bachelor's Degree in Artificial Intelligence, Business Analytics, Data Science, Computer Science, Mathematics, Engineering, or related field. * At least 5\+ years of experience in DevOps engineering or Security * Strong expertise in cloud infrastructure, DevOps platforms and software development life cycle. * Hands\-on experience with experience working with Version Control Platforms, Docker, Kubernetes, Terraform, Ansible, Vault. * Experience integrating: * Fortify * SAST / DAST tools/IaC/ * Container and dependency scanning tools * Opensource tools, * Strong Docker knowledge (secure image building, hardening) * Experience with security assessments, incident response, and compliance checks * Scripting: Python / Bash / PowerShell * Strong problem solving, communication and documentation skills **Ideally, you’ll also need** * Hands\-on experience with infrastructure\-as\-code using Terraform, Bicep * Hands\-on experience with CI/CD Gitlab and GitHub * Strong hands\-on experience with 3\+ years with the listed platforms or equivalents. * Experience with monitoring and log aggregation tools like Prometheus, Grafana, ELK stack, or similar.