DevSecOps Engineer

Job Summary

Westfield is seeking a DevSecOps Engineer to help modernize and secure our software delivery platforms. In this hands-on role, you'll work at the intersection of development, infrastructure, and security.  This includes building automation, streamlining CI/CD pipelines, and strengthening platform reliability. You’ll partner closely with cross-functional teams to embed security into every phase of the delivery process, while driving adoption of DevSecOps best practices across the enterprise.

Job Responsibilities

• Lead the implementation and continuous improvement of our DevSecOps toolchain, focusing on automation, scalability, and security integration.
• Work directly with development teams to promote DevSecOps principles, optimizing workflows, enabling shift-left practices, and reducing friction in day-to-day engineering.
• Design, build, and maintain CI/CD pipelines using infrastructure-as-code and pipeline-as-code. (e.g. Azure DevOps, Kubernetes YAML, and Terraform)
• Help manage and scale containerized workloads on Kubernetes/OpenShift clusters.
• Integrate security checks into the development lifecycle using tools like SonarQube, Snyk.
• Improve monitoring, alerting, and observability of our environments using tools such as Dynatrace and Graylog.
• Participate in incident response and root cause analysis, helping teams to minimize downtime and harden systems over time.
• Explore and evaluate additions to our DevSecOps practice. (e.g. New cloud deployment patterns, internal developer platform, GenAI development practices and safeguards)
• Define and track KPIs such as DORA4 related to delivery health and DevSecOps maturity.
• Support branching and code merge strategies that enable frequent, reliable releases.

Job Qualifications

• 3+ years of experience in a DevOps, infrastructure, or application engineering role, with hands-on implementation of modern DevOps practices.
• Comfortable working in cross-functional teams and coaching developers on DevOps practices.
• Demonstrated proficiency with containerization and orchestration technologies (e.g., Docker and Kubernetes/OpenShift).
• Experience designing or maintaining CI/CD pipelines using pipeline-as-code approaches (e.g., YAML pipelines in Azure DevOps or similar).
• Solid understanding of good version control best practices (e.g., Git workflows, branching strategies).
• Bachelor’s degree in Computer Science, Information Technology, a related field or equivalent practical experience.
• Applicants must be currently authorized to work in the United States on a full-time basis.

Additional Qualifications

• Experience with Azure DevOps, OpenShift, and JIRA in a production environment.
• Exposure to DevSecOps tooling such as SonarQube, Snyk, GitHub Copilot, or similar.
• Familiarity with infrastructure-as-code tools and principles (e.g., Terraform, Helm).

Location 

Hybrid defined as three (3) or more days in the office per week. 

Behavioral Competencies

• Collaborates
• Communicates Effectively
• Customer Focus
• Decision Quality
• Nimble Learning

Technical Skills

• IT Troubleshooting
• Automation
• Agile Methodologies
• Software Development Lifecycle
• Operating Systems
• Technical Documentation
• DevOps Principles and Release Methodologies (e.g. Canary, Feature Toggles)
• CI/CD Pipelines and Tools (e.g. GitHub, Azure DevOps, Artifactory)
• Programming and Scripting Languages (e.g. Bash, Python)
• Cloud Platforms / Hybrid Deployment Models
• Infrastructure As Code (IaC) Tools and Methodologies (e.g. Ansible, Puppet, Chef)
• Version Control Repository Tools and Methodologies (e.g. Git, AzureDevOps)
• Build / Deployment Systems and Methodologies (e.g. UrbanCode, Octopus)
• Dependency Management (e.g. ProGet, Artifactory)
• Containerization and Orchestration (e.g. Docker, Kubernetes)
• Code Quality / Security tools (e.g. SonarCube, AppScan)

This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.