About the role

DevOps & Security Architect designing secure, automated pipelines for Product Lifecycle Management at Capgemini. Overseeing security architectures and compliance for PLM solutions.

Responsibilities

Architect secure DevOps solutions for PLM: design and implement robust, scalable, and secure DevOps frameworks and CI/CD pipelines tailored to PLM applications (Teamcenter, Windchill, Aras).
Automate builds, testing, deployments, and configuration management for PLM customizations, integrations, and upgrades.
Develop and enforce comprehensive security architectures for PLM environments, including data encryption, access control, identity and access management (IAM), vulnerability management, and threat modeling.
Integrate automated security testing (SAST, DAST, SCA) and compliance controls into CI/CD pipelines to proactively detect and mitigate risks.
Design and implement Infrastructure as Code (IaC) practices for deploying and managing PLM infrastructure, ensuring consistency, repeatability, and security.
Implement advanced monitoring, logging, and alerting systems for PLM applications and infrastructure, with a focus on performance, availability, and security.
Ensure PLM environments and data governance practices comply with relevant regulations (ITAR, EAR, GDPR, HIPAA) and internal policies.
Design and deploy containerization (Docker) and orchestration (Kubernetes) strategies for PLM components, with emphasis on security, performance, and scalability.

Bachelor’s degree in Computer Science, Information Technology, Cybersecurity or a related field.
Minimum of 8 to 10 years of IT experience, including at least 5 years in a role focused on DevOps or security architecture.
Proven experience as a secure CI/CD architect for complex enterprise applications, with strong emphasis on PLM systems (Teamcenter, Windchill, Aras).
Deep understanding of PLM architecture, data models, and customization frameworks.
Advanced knowledge of security principles: network security, application security, data security, IAM, and encryption.
Hands-on experience with cloud platforms (AWS, Azure, GCP) and securing cloud-native applications.
Proficiency with CI/CD tools (Jenkins, GitLab CI, Azure DevOps, Harness), configuration management tools (Ansible, Puppet, Chef), and IaC tools (Terraform, CloudFormation).
Scripting and automation skills (Python, Bash, PowerShell).
Familiarity with Docker and Kubernetes.
Excellent communication, collaboration, and technical simplification skills (ability to explain technical concepts to non-technical stakeholders).

Paid time off according to employee category (A–F) as defined by policy: Vacation: 12 to 25 days depending on category, company-paid holidays, personal days, sick leave
Medical, dental, and vision coverage (or coordination with the provincial plan in Canada)
Retirement savings plans (e.g., 401(k) in the United States, RRSP in Canada)
Life and disability insurance
Employee assistance programs
Other benefits as provided by local policy and eligibility