Posted at: 31 October

DevSecOps Engineer (Embedded/Edge) (Remote, Full-Time) [HRPS]

Company

Smart Working Solutions

Smart Working Solutions is a London-based B2B staffing firm specializing in providing remote software developers to businesses in the technology sector, targeting a global market.

Remote Hiring Policy:

Smart Working Solutions embraces remote work and hires from various regions, including locations such as Pakistan, while integrating remote developers into client teams.

Job Type

Full-time

Allowed Applicant Locations

India, Pakistan

Apply Here

Job Description

About Smart Working

At Smart Working, we believe your job should not only look right on paper but also feel right every day. This isn’t just another remote opportunity - it’s about finding where you truly belong, no matter where you are. From day one, you’re welcomed into a genuine community that values your growth and well-being.

Our mission is simple: to break down geographic barriers and connect skilled professionals with outstanding global teams and products for full-time, long-term roles. We help you discover meaningful work with teams that invest in your success, where you’re empowered to grow personally and professionally.
Join one of the highest-rated workplaces on Glassdoor and experience what it means to thrive in a truly remote-first world.  

About the Role

We’re looking for a DevSecOps Engineer (Embedded/Edge) to integrate security best practices throughout the development and deployment lifecycle of software running on resource-constrained, multi-architecture environments.
 You’ll design and maintain secure, automated CI/CD pipelines, build Infrastructure-as-Code (IaC) for hybrid and edge systems, and implement comprehensive security scanning and observability frameworks.
 This is a hands-on role ideal for an engineer who understands both embedded systems and modern DevSecOps principles, ensuring systems are secure, scalable, and compliant from the ground up.

Responsibilities

    • Secure Pipeline Development – Design, build, and maintain secure-by-default CI/CD pipelines supporting multi-architecture deployments for embedded and edge devices.
    • Infrastructure & Configuration Management – Develop and manage Infrastructure-as-Code (IaC) for hybrid cloud and edge environments using tools like Terraform.
    • Automation – Automate build processes, security scanning, and compliance validation to ensure efficient, secure software delivery.
    • Security Testing – Implement automated testing frameworks including unit, integration, and security tests (SAST, DAST, dependency scanning).
    • Security Monitoring & Observability – Build monitoring, logging, and tracing systems to detect anomalies and potential vulnerabilities in real time.
    • Vulnerability Management – Continuously monitor for vulnerabilities and coordinate remediation across the full software lifecycle.
    • Embedded Systems Optimisation – Optimise build processes for embedded and edge platforms with limited compute and storage resources.
    • Incident Response & Post-Mortem Analysis – Participate in incident response and root-cause analysis to strengthen system resilience.
    • Collaboration & Training – Educate and support development teams in secure coding practices and DevSecOps principles, fostering a security-first culture.

Requirements

    • 5+ years of experience in DevSecOps, Embedded Systems Engineering, or Cloud Security roles.
    • Proficiency in C and C++, with experience developing and securing applications for embedded or edge devices.
    • Strong command of DevOps pipelines and tools for CI/CD, IaC (Terraform, Ansible, etc.) and container orchestration (Kubernetes, Docker).
    • Experience implementing and maintaining security scanning tools such as SAST, DAST, dependency scanning, or AppSec platforms.
    • Hands-on experience with Linux and Windows operating systems.
    • Solid scripting skills in Python or Bash for automation and system configuration.
    • Working knowledge of cloud platforms (AWS, Azure, or GCP) and networking protocols (HTTP/S, DNS, IPSec).
    • Strong understanding of core security principles, threat modelling, and compliance frameworks such as STIG and RMF.
    • Excellent analytical, problem-solving, and communication skills, with the ability to work cross-functionally between development, operations, and security teams.

Nice to Have

    • Experience with security hardening for IoT or real-time operating systems (RTOS).
    • Familiarity with infrastructure security automation and policy-as-code frameworks (e.g., OPA, Checkov).
    • Exposure to embedded observability tools and performance profiling.
    • Relevant certifications such as CompTIA Security+, CISSP, or GIAC DevSecOps Engineer (GDSA).

Benefits

    • Fixed Shifts: 12:00 PM - 9:30 PM IST (Summer) | 1:00 PM - 10:30 PM IST (Winter)
    • No Weekend Work: Real work-life balance, not just words
    • Day 1 Benefits: Laptop and full medical insurance provided
    • Support That Matters:Mentorship, community, and forums where ideas are shared
    • True Belonging: A long-term career where your contributions are valued
At Smart Working, you’ll never be just another remote hire.

Be a Smart Worker — valued, empowered, and part of a culture that celebrates integrity, excellence, and ambition.

If that sounds like your kind of place, we’d love to hear your story. 
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
Apply Here