Checkmarx is a global leader in enterprise application security and cloud-native DevSecOps solutions. The company powers secure software development through the Checkmarx One™ platform, helping enterprises secure applications, software supply chains, APIs, containers, infrastructure-as-code, and cloud-native environments.

Checkmarx serves more than 1,800 enterprise customers worldwide, including Fortune 100 companies such as Siemens, Airbus, Salesforce, Walmart, Adidas, and Citi.

The company focuses on cloud-native application security, Kubernetes security, DevSecOps automation, compliance-driven engineering, and secure software supply chain management.

---

Job Overview

Checkmarx is hiring a Junior DevSecOps Engineer for its Platform Engineering DevOps team in Pune.

The role focuses on:

- Cloud Infrastructure Security

- Kubernetes Security

- CI/CD Security Automation

- Secure DevOps Practices

- Infrastructure as Code (IaC)

- Cloud-native Security Engineering

- Software Supply Chain Security

- FedRAMP Compliance Operations

Candidates will work on:

- AWS Cloud Security

- Kubernetes Hardening

- Argo CD

- Terraform & AWS CDK

- CI/CD Pipelines

- Docker & Helm

- Monitoring & Observability

- Security Automation

This opportunity is ideal for:

- DevSecOps Engineers

- Platform Engineers

- Site Reliability Engineers

- Cloud Security Engineers

- Kubernetes Engineers

- Infrastructure Security Engineers

---

Key Responsibilities

Cloud Infrastructure & Security

- Design and automate secure AWS cloud infrastructure

- Ensure scalability, reliability, and compliance

- Implement least-privilege access and cloud security controls

CI/CD & Secure Software Supply Chain

- Build secure CI/CD pipelines

- Implement software supply chain security practices

- Manage signing, verification, and SBOM workflows

Kubernetes Security

- Harden Kubernetes deployments using security best practices

- Work with Network Policies and Pod Security Standards

- Develop Kubernetes Operators and workload security controls

Monitoring & Observability

- Integrate monitoring and observability platforms

- Work with Grafana, Prometheus, ELK, and Fluent Bit

- Support cloud-native threat detection and monitoring

Infrastructure as Code (IaC)

- Develop reusable IaC templates using Terraform and AWS CDK

- Automate infrastructure provisioning and compliance controls

- Improve operational consistency and scalability

DevSecOps Collaboration

- Work with security, compliance, and engineering teams

- Conduct threat modeling and risk assessments

- Support FedRAMP audits and compliance monitoring

Automation & Tooling

- Develop automation scripts using Python, Bash, or Go

- Improve operational efficiency through automation

- Maintain secure deployment workflows

---

Required Skills

- AWS Cloud

- Kubernetes

- Docker

- Helm

- Argo CD

- Terraform

- AWS CDK

- Jenkins

- GitHub Actions

- CircleCI

- CI/CD Pipelines

- DevSecOps

- Python

- Bash

- Go

- Infrastructure Security

- Cloud Security

- Observability & Monitoring

---

Preferred Skills

- Kubernetes Operator Framework

- Pod Security Standards

- Network Policies

- SBOM & Software Supply Chain Security

- AWS GuardDuty

- AWS Inspector

- ELK Stack

- Prometheus

- Grafana

- FedRAMP Compliance

- Threat Modeling

---

Required Qualifications

- 1–2 years of experience in DevOps, SRE, Platform Engineering, or DevSecOps

- Strong understanding of cloud infrastructure security

- Experience with Kubernetes and CI/CD tools

- Knowledge of Infrastructure as Code practices

- Strong troubleshooting and analytical skills

- Security-first engineering mindset

---

Recently Asked DevSecOps Interview Questions & Answers

1. What is DevSecOps?

Answer: DevSecOps integrates security into DevOps workflows to ensure secure software delivery and infrastructure operations.

2. What is Kubernetes Hardening?

Answer: Kubernetes hardening improves cluster security using policies, RBAC, network isolation, and workload protection.

3. What is Infrastructure as Code (IaC)?

Answer: IaC automates infrastructure provisioning using tools like Terraform and AWS CDK.

4. What is Argo CD?

Answer: Argo CD is a GitOps continuous delivery tool for Kubernetes deployments.

5. What is SBOM?

Answer: SBOM (Software Bill of Materials) lists software components and dependencies for supply chain security.

6. What is AWS GuardDuty?

Answer: AWS GuardDuty is a threat detection service for monitoring malicious activity in AWS environments.

7. What is Pod Security Standard?

Answer: Pod Security Standards define Kubernetes security policies for workload protection and compliance.

---

Recommended Certifications

- AWS Certified Security Specialty

- AWS Certified DevOps Engineer

- Certified Kubernetes Administrator (CKA)

- Certified Kubernetes Security Specialist (CKS)

- HashiCorp Terraform Associate

- Docker Certified Associate

- Certified DevSecOps Professional

---

Career Opportunities

Candidates can grow into:

- Senior DevSecOps Engineer

- Kubernetes Security Engineer

- Cloud Security Engineer

- Platform Reliability Engineer

- Site Reliability Engineer (SRE)

- Infrastructure Security Architect

- Cloud Platform Engineer

- Security Automation Engineer

---

DevSecOps Engineer Jobs, Kubernetes Security Engineer, AWS Security Engineer, Terraform DevOps Jobs, Argo CD Engineer Careers, Cloud Security Engineer Jobs, CI/CD Security Engineer, Infrastructure Security Careers, Kubernetes Engineer Jobs, DevOps Security Automation, Docker Kubernetes Careers, Cloud-native Security Engineer, FedRAMP Compliance Engineer, Site Reliability Engineer Jobs, AWS DevSecOps Careers

---

Top Hiring Countries For DevSecOps & Cloud Security Engineers

- India

- United States

- Canada

- Germany

- Australia

- United Kingdom

- Singapore

- Netherlands

- United Arab Emirates

---

Why Join Checkmarx?

- Work with enterprise-scale cloud-native security platforms

- Exposure to modern DevSecOps technologies

- Opportunity to work on Kubernetes and cloud security

- Experience with secure software supply chain engineering

- Collaborative and innovation-driven engineering culture

- Strong career growth in DevSecOps and Cloud Security

---