ETP Group
상담하기
DevSecOps & Compliance Manager

Company Description: ETP Group is an AI-first SaaS company serving the Retail and e-Commerce industries across Asia Pacific. With 39 years of trust in the market, it supports 500+ brands in 17 countries through enterprise-grade platforms. ETP’s cloud-native solutions—ETP Unify and Ordazzle—cover POS, CRM, Inventory, Promotions, PIM, OMS, WMS, LMS, and seamless marketplace integration. For large-format retail, ETP V5 offers a hybrid omni-channel suite. Built on secure, scalable M.A.C.H architecture. ETP delivers frictionless, personalized experiences across channels. Its intuitive, asset-light platforms accelerate cloud transformation, reduce IT overhead, and help retailers enhance CX, drive growth, and lead in a fast-evolving commerce environment. Here is a glimpse of what we do - http://www.etpgroup.com/Videos.html For more information, log on to www.etpgroup.com

필요한 경험
6-12
위치
Mumbai
역할 유형
Full Time
공유하기

Designation: DevSecOps & Compliance Manager

Department: IT & Security Compliance

Location: Saki Vihar (beside L&T)

Work Mode: Work from office

Working Days: Monday to Friday

Experience: 6+ Years

Job Description:

About The Role:

We are looking for a highly skilled DevSecOps & Compliance Manager to lead secure development practices, strengthen cloud security posture, and drive compliance initiatives across the organization. The role requires a strong blend of hands-on DevSecOps expertise, cloud security, and compliance governance, ideally in a SaaS/product-based environment.

Key Responsibilities:

  • Implement and manage DevSecOps practices across CI/CD pipelines
  • Strengthen and maintain cloud security posture (AWS/Azure/GCP)
  • Drive compliance initiatives including ISO 27001 and DPDPA
  • Manage Vulnerability Assessment & Penetration Testing (VAPT)
  • Lead risk assessment, remediation, and audit readiness
  • Establish security monitoring and awareness programs
  • Develop and maintain security policies, procedures, and documentation

The Job responsibilities of the candidate shall include but not limited to the Job Description & to perform any other tasks/functions as required by the Company.

Experience & Skills:

  • 6–12 years of relevant experience
  • Prior experience as a Software Developer is mandatory
  • Exposure to SaaS / product-based organizations preferred
  • Strong understanding of CI/CD pipelines (GitHub Actions, Jenkins, GitLab CI)
  • Hands-on experience in DevSecOps implementation & secure coding practices
  • Expertise in cloud security (AWS / Azure / GCP)
  • Working knowledge of ISO 27001 controls & audits
  • Understanding of DPDPA (India Data Protection Law)
  • Experience in risk assessment, audit handling, and compliance frameworks
  • Proven experience in VAPT management
  • Strong communication and stakeholder management skills

Desired Skills & Certifications

  • Experience implementing end-to-end DevSecOps frameworks
  • Certifications in DevSecOps / Security (preferred)
  • Hands-on with tools like SonarQube and security automation in CI/CD
  • Experience in Kubernetes / container security
  • Knowledge of Zero Trust Architecture
  • Experience with threat modeling (STRIDE, DREAD)
  • Basic knowledge of incident response & security forensics
  • Ability to present to leadership and external auditors

Perks and benefits

  • Pick & Drop facility from Saki Naka Metro.
  • Complimentary breakfast.
  • Medical insurance coverage.