DevOps Auditor
Upload My Resume
Drop here or click to browse · PDF, DOCX, DOC, RTF, TXT
Requirements
• Minimum of a Bachelor’s degree in Computer Science/Engineering. • Certifications in one or more of the following will be an added advantage CISA, CISSP, CCSP, AWS/Azure/GCP certifications etc. • Experience: Minimum of 5 years of experience in DevOps, cloud engineering, security, IT audit, or risk management. • CI/CD tools (e.g., GitHub Actions, GitLab CI, Jenkins) • Containers and orchestration (Docker, Kubernetes) • Cloud platforms (AWS, Azure, GCP) • What we can offer you • Culture -We put our people first and prioritize the well-being of every team member. We’ve built a company where all opinions carry weight and where all voices are heard. We value and respect each other and always look out for one another. Above all, we are human. • Learning - We have a learning and development-focused environment with an emphasis on knowledge sharing, training, and regular internal technical talks. • Compensation - You’ll receive an attractive salary, pension, health insurance, annual bonus, plus other benefits. • What to expect in the hiring process • A preliminary phone call with the recruiter • Panel interview with a Manager • Behavioral and technical interview with an Executive team member
Responsibilities
• Audit & Compliance • Audit & Compliance • Audit CI/CD pipelines, infrastructure-as-code (IaC), and deployment processes for compliance with internal policies and external standards (e.g., ISO 27001, SOC 2, PCI DSS, HIPAA). • Assess cloud environments (AWS, Azure, GCP) for security, governance, and cost controls. • Review access management, secrets handling, and identity policies. • Validate change management, release management, and incident response processes. • Risk & Security Assessment • Identify operational, security, and compliance risks in DevOps workflows. • Evaluate vulnerability management, patching, and dependency controls. • Review logging, monitoring, alerting, and observability practices. • Assess backup, disaster recovery, and business continuity readiness. • Process & Controls Review • Examine DevOps maturity, automation coverage, and adherence to best practices. • Evaluate segregation of duties and approval workflows. • Review version control practices, branching strategies, and audit trails. • Assess third-party tools and vendor integrations for risk exposure. • Reporting & Advisory • Produce clear audit reports with findings, risk ratings, and actionable recommendations. • Present audit results to engineering leadership, security teams, and management. • Track remediation efforts and verify corrective actions. • Provide guidance on improving DevOps governance and control frameworks. • Participates in the other regular audits in the IT Audit Plan as assigned by the Head, IT Audit. • Follow-up responsible teams to implement the recommendations of internal auditors, external auditors, consultants, and security analysts.