Project overview
About the Role We are seeking an experienced DevSecOps or Infrastructure Security expert to assess and strengthen the security of our internal development environment. The primary focus is to proactively guard against unauthorized access and data breaches—particularly concerning our source code, sensitive assets, and AI components. Our development team operates fully remotely, and were looking to implement robust, scalable controls that ensure: No single individual (including DevOps personnel) has unrestricted access to the entire codebase All sensitive assets (environment variables, secrets, API keys, etc.) are securely stored and managed CI/CD pipelines are protected and properly restricted Code repositories are accessed with clear permissions, logs, and risk isolation Key Responsibilities Assess and strengthen security measures within the development environment Implement robust controls to prevent unauthorized access and data breaches Ensure secure storage and management of sensitive assets Protect and restrict CI/CD pipelines Manage access to code repositories with clear permissions and risk isolation Qualifications/Requirements Proven experience in DevSecOps or Infrastructure Security Deep knowledge of Git workflows, CI/CD security practices, and insider threat mitigation Hands-on expertise with Google Cloud Platform, particularly: IAM, Cloud Build, Secrets Manager, Networking & firewall controls Experience in securing AI/ML environments, including ML models, Data pipelines, GPU workloads (Highly preferred but not mandatory) Strong understanding of Zero Trust Architecture and experience in implementing it in real-world environments Excellent communication skills