Job Title: DevOps / Observability Engineer (CI/CD & SecOps)
About Us
“Capco, a Wipro company, is a global technology and management consulting firm. Awarded with Consultancy of the year in the British Bank Award and has been ranked Top 100 Best Companies for Women in India 2022 by Avtar & Seramount. With our presence across 32 cities across globe, we support 100+ clients across banking, financial and Energy sectors. We are recognized for our deep transformation execution and delivery.
WHY JOIN CAPCO?
You will work on engaging projects with the largest international and local banks, insurance companies, payment service providers and other key players in the industry. The projects that will transform the financial services industry.
MAKE AN IMPACT
Innovative thinking, delivery excellence and thought leadership to help our clients transform their business. Together with our clients and industry partners, we deliver disruptive work that is changing energy and financial services.
#BEYOURSELFATWORK
Capco has a tolerant, open culture that values diversity, inclusivity, and creativity.
CAREER ADVANCEMENT
With no forced hierarchy at Capco, everyone has the opportunity to grow as we grow, taking their career into their own hands.
DIVERSITY & INCLUSION
We believe that diversity of people and perspective gives us a competitive advantage.
Looking for Immediate joiners only
Job Title: Devsec Ops Engineer
Location: Bengaluru/ Pune
Experience: 8+yrs
Job Summary
DevSecOps Engineer — skill set
Must-have (non negotiables)
• CI/CD engineering: Strong hands-on with pipelines (e.g., Jenkins / GitLab CI / Azure DevOps), build/release patterns, artefact versioning, promotion strategies.
• Cloud + container platform: Solid experience with Kubernetes and Docker, plus at least one major cloud (AWS/Azure/GCP) including IAM concepts.
• Infrastructure as Code (IaC): Terraform (preferred) and/or CloudFormation/Bicep; ability to build reusable modules and manage state safely.
• Security in the SDLC: Practical implementation of SAST, SCA, DAST, secrets scanning, container image scanning; ability to set quality/security gates in pipelines.
• Vulnerability management: Triage findings, prioritise by risk, drive remediation with dev teams, and track to closure.
• Observability & operations: Logging/metrics/tracing basics; incident support; familiarity with tools like Splunk/ELK, Prometheus/Grafana, OpenTelemetry.
• Scripting & automation: Bash + Python (or equivalent) to automate repetitive tasks and integrate tools.
• Secure configuration & hardening: Baselines for OS/container/K8s; RBAC, network policies, least privilege.
• Source control & collaboration: Git workflows, code reviews, branching strategies, and working in agile delivery teams.
• Communication & influence: Can coach developers, write clear runbooks, and drive adoption without being “the security police”.
• Payments Background, basic understanding of the payments flows
Good-to-have (differentiators)
• Policy-as-code: OPA/Gatekeeper, Kyverno; automated compliance controls.
• Threat modelling & secure design: STRIDE-style thinking; secure architecture reviews.
• Secrets management: HashiCorp Vault / cloud-native secrets; rotation patterns.
• Advanced K8s security: Pod Security Standards, admission controllers, service mesh security (mTLS), runtime security (Falco).
• Supply chain security: SBOMs (CycloneDX/SPDX), provenance (SLSA), signing (Cosign), dependency pinning.
• Platform engineering: Internal developer platform patterns, golden paths, reusable templates.
• Regulated environment experience: Evidence collection, audit support, control mapping (without turning everything into paperwork).
• Certifications (optional): CKAD/CKA, Security+, AZ-500/AWS Security, Terraform Associate.
If you are keen to join us, you will be part of an organization that values your contributions, recognizes your potential, and provides ample opportunities for growth. For more information, visit www.capco.com. Follow us on Twitter, Facebook, LinkedIn, and YouTube.