DevSecOps Engineer

Job Description

Reporting to DevSecOps Practise Area Lead, the position holder is pivotal role in designing, building, and scaling intelligent software delivery platforms across Safaricom’s digital ecosystem. The role focuses on advancing engineering maturity through AIOps, DevSecOps automation, policy-as-code governance, and cloud-native platform engineering. Key outcomes include improved deployment speed, platform reliability, security compliance, and engineering efficiency across multiple teams.

Responsibilities

• Uphold the company code of conduct, policies and procedures, ensuring integrity and accountability in every aspect of your work.
• All employees have a responsibility to adhere to safety, health, and wellbeing  policies, guidelines and procedures in all actions and decisions.
• Design and maintain secure, reusable CI/CD pipelines and internal developer platforms for self-service delivery
• Embed security across the SDLC using SAST, DAST, SCA, container, and secrets scanning
• Enforce compliance through Policy-as-Code in CI/CD pipelines and Kubernetes environments
• Provision and manage cloud infrastructure using IaC with a focus on scalability, resilience, and cost optimization
• Implement observability and AIOps capabilities, including monitoring, anomaly detection, and automated incident response
• Develop automation tools, scripts, and backend services to improve efficiency and productivity
• Support end-to-end software delivery, including design, development, testing, and deployment
• Handle L2/L3 incidents, perform root cause analysis, and drive continuous reliability improvements
• Collaborate with cross-functional teams to deliver secure, scalable, and high-performing systems
• Manage identity, access, and secrets securely while maintaining documentation and enforcing best practices

Qualifications

• Bachelor’s or master’s degree in computer science, Information Systems, Engineering, or a related field.
• 3–5 years of experience in DevOps/DevSecOps, software engineering, or systems engineering in agile environments.
• Relevant certifications (e.g., CKA, AWS/Azure, CSD) and telecom industry experience are an added advantage.
• Strong experience with CI/CD pipelines (e.g., Jenkins, GitLab CI/CD) and automation practices.
• Proficiency in scripting/programming languages such as Go, Python, Java, or Bash.
• Hands-on experience with cloud platforms (AWS, Azure, or GCP) and cloud-native architectures.
• Experience with Kubernetes and containerization (e.g., Docker).
• Knowledge of Infrastructure as Code (IaC) tools such as Terraform or Ansible.
• Familiarity with DevSecOps practices, including security testing (SAST, DAST, SCA), secrets management, and Policy-as-Code (e.g., OPA).
• Experience with monitoring and observability tools (e.g., Prometheus, Grafana, ELK).
• Understanding of system design, distributed systems, and incident/problem management (L2/L3 support).
• Relevant certifications (e.g., CKA, AWS/Azure, CSD) and telecom industry experience are an added advantage.