Job Description

Title: DevOps Manager (DevSecOps - Government & Regulated Environments)

Role Overview

We are seeking an experienced DevOps Manager with strong DevSecOps expertise to design, implement, and govern secure CI/CD and cloud architectures for government and highly regulated environments. This role is responsible for embedding security, compliance, and audit controls across the software delivery lifecycle while ensuring alignment with government cybersecurity frameworks and regulatory mandates.

Key Responsibilities

Design, implement, and govern DevSecOps architecture aligned with government security frameworks, policies, and regulations. Embed security, compliance, and audit controls within CI/CD pipelines for government and regulated applications. Ensure secure integration of applications, infrastructure, and cloud platforms within restricted and classified environments. Define, enforce, and continuously monitor security standards, baselines, and policies in accordance with government mandates. Perform risk assessments, threat modeling, and security architecture reviews for systems handling sensitive or classified data. Integrate and manage approved security tools including SAST, DAST, SCA, container scanning, and code analysis within development pipelines. Support vulnerability management, incident response, and remediation activities in coordination with SOC, CERT, and security operations teams. Ensure compliance with government cybersecurity standards, data protection laws, and audit requirements. Provide periodic reporting on security posture, compliance status, risk metrics, and DevSecOps KPIs to governance and oversight bodies. Maintain DevSecOps architecture documentation, security SOPs, operating procedures, and compliance artefacts.
Required Skills & Qualifications

5+ years of experience in DevOps / DevSecOps roles, preferably within government or regulated environments. Strong hands-on experience with CI/CD tools such as GitLab, Jenkins, Azure DevOps in secure or regulated settings. Expertise in government-approved cloud platforms and security controls (e.g., AWS GovCloud, Azure Government, or equivalent). Hands-on experience with Infrastructure as Code (IaC) tools including Terraform, ARM Templates, or CloudFormation, with built-in security guardrails. Strong knowledge of container security and orchestration (Docker, Kubernetes) in restricted or airgapped networks. Solid understanding of Secure SDLC, Zero Trust Architecture, and defense-in-depth principles. Experience working with government cybersecurity frameworks such as NIST, ISO/IEC 27001, CIS Controls, or equivalent. Familiarity with audit, risk, and compliance (GRC) processes and regulatory assessments. Excellent stakeholder communication skills with both technical teams and non-technical government entities.
Preferred Qualifications

Prior experience supporting defense, public sector, or critical infrastructure projects. Exposure to classified or restricted data environments. Experience with security monitoring, SIEM, and compliance automation tools. Security certifications such as CISSP, CISM, CCSP, GIAC, or government-mandated equivalents.
Key Competencies

Security-first and compliance-driven mindset Strong leadership and governance capabilities Risk assessment and decision-making skills Clear documentation and reporting ability High integrity and accountability in regulated environments
Job Types: Full-time, Permanent

Pay: AED45,000.00 - AED60,000.00 per month