Job Role: DevSecOps Engineer Apply only if Eligible to work on W2. Job Overview: Join a strategic, greenfield initiative to build a next-generation, in-house Data Risk & Control Platform from the ground up, replacing a legacy Archer GRC system. This modern platform will focus on continuous monitoring using AI, LLMs, and ingesting both structured and unstructured risk/control data from across the bank. OpenShift Container Platform (OCP) will be the core infrastructure, and security will be embedded from day one. Candidates need to have: • 7+ years of experience with Docker, Kubernetes, and OpenShift (OCP). • Proven experience building enterprise-grade CI/CD and SecDevOps pipelines from scratch. • Strong knowledge of deployment and monitoring tools: Jenkins, Harness, Liquibase, AppDynamics, ELK Stack, Splunk. • Deep understanding of risk frameworks, control hierarchies, and governance data models. • Proficient in Java, Python, Shell/Bash scripting, and infrastructure automation. • Experience leading platform modernization or GRC transformation efforts is a big plus. Job Responsibilities: • Lead the design, build, and deployment of secure containerized environments using Docker, Kubernetes, and OpenShift (OCP). • Architect and implement end-to-end CI/CD pipelines using Jenkins, GitHub, Harness, and DevSecOps tooling. • Drive alignment with enterprise security, infrastructure, and governance standards. • Define and enforce SecDevOps best practices, non-functional requirements (NFRs), SLAs, and observability standards. • Collaborate with cross-functional teams (Risk, GRC, InfoSec) to align platform design with business requirements and compliance needs. • Mentor and guide junior engineers on secure cloud-native development.