Quality Engineering / Dev Sec Ops Consultant

<p>We are seeking a Quality Engineering / DevSecOps Consultant with deep expertise in automation, CI/CD, and secure software delivery pipelines within the Capital Markets and Trading domain. The ideal candidate will have a strong understanding of front-office trading systems, order management workflows, market data feeds, and post-trade processes, combined with a proven track record in test automation, environment resilience, performance engineering, and DevSecOps implementation.</p><p><br></p><p><br></p><p><strong>About the Role</strong></p><p><br></p><p><br></p><p>The role involves defining and implementing end-to-end test automation strategies, managing secure CI/CD pipelines, and ensuring compliance with financial regulatory standards while collaborating with various teams to deliver secure and resilient software.</p><p><br></p><p><br></p><p><strong>Responsibilities</strong></p><p><br></p><p><strong>Quality Engineering</strong> </p><ul><li>Define and implement end-to-end test automation strategies across trading platforms, OMS/EMS, risk systems, and APIs.</li><li>Develop automated testing frameworks for UI, API, integration, and performance testing (e.g., using Selenium, Cypress, REST Assured, JMeter, Gatling).</li><li>Establish shift-left testing practices — embedding quality gates within the CI/CD pipeline.</li><li>Conduct performance benchmarking and resilience testing under real-market conditions.</li><li>Implement data validation and synthetic data generation for test environments (market data, trades, orders).</li><li>Define quality metrics and dashboards for continuous improvement and risk visibility.</li></ul><p><br></p><p><strong>DevSecOps Engineering</strong> </p><ul><li>Design and manage secure CI/CD pipelines using tools like Jenkins, GitLab CI, Azure DevOps, or GitHub Actions.</li><li>Integrate SAST/DAST, dependency scanning, and vulnerability management into the pipeline (e.g., SonarQube, Checkmarx, Aqua, or Twistlock).</li><li>Ensure compliance with financial regulatory standards (e.g., SOX, MiFID II, SEC, GDPR) in deployment processes.</li><li>Automate infrastructure provisioning and configuration management via IaC tools (Terraform, Ansible, CloudFormation).</li><li>Implement containerization and orchestration (Docker, Kubernetes, OpenShift) for scalable trading systems.</li><li>Collaborate with developers, SREs, and QA teams to ensure secure, resilient, and compliant software delivery.</li></ul><p><br></p><p><strong>Capital Markets Domain Expertise</strong> </p><ul><li>Strong understanding of trading lifecycles — from order initiation to settlement.</li><li>Experience with front/middle/back office applications, FIX protocols, market data feeds (Bloomberg, Reuters, etc.), and risk systems.</li><li>Familiarity with low-latency environments, pricing engines, and real-time trade capture systems.</li><li>Work closely with business users, quants, and risk teams to define test cases reflecting market scenarios and regulatory constraints.</li></ul><p><br></p><p><br></p><p><strong>Qualifications</strong></p><ul><li>Bachelor’s or Master’s in Computer Science, Engineering, or related field.</li><li>8+ years of experience in software quality engineering, DevOps, or platform reliability roles.</li><li>3+ years in the Capital Markets / Trading domain (equities, derivatives, FX, or fixed income).</li><li>Strong understanding of regulatory and compliance aspects of trading systems.</li><li>Excellent problem-solving, communication, and stakeholder management skills.</li></ul><p><br></p><p> </p><p><strong>Required Skills</strong></p><ul><li><strong>Automation & Testing:</strong> Selenium, Cypress, Playwright, REST Assured, JMeter, Gatling, Postman, Cucumber, TestNG, Robot Framework</li><li><strong>CI/CD & DevSecOps:</strong> Jenkins, GitLab CI, Azure DevOps, ArgoCD, Helm, SonarQube, NexusIQ, Checkmarx, OWASP ZAP</li><li><strong>Cloud & Infrastructure:</strong> AWS / Azure / GCP, Docker, Kubernetes, Terraform, Ansible</li><li><strong>Languages:</strong> Java, Python, Groovy, Shell, YAML</li><li><strong>Monitoring & Observability:</strong> Prometheus, Grafana, ELK Stack, Splunk, Dynatrace</li><li><strong>Version Control & Collaboration:</strong> Git, Jira, Confluence, Bitbucket</li><li><strong>Capital Markets:</strong> FIX Protocol, Market Data (Reuters, Bloomberg), Trade Lifecycle, OMS/EMS systems (e.g., Fidessa, FlexTrade, Murex, Calypso)</li></ul><p><br></p><p> </p><p><strong>Preferred Skills</strong></p><ul><li>AWS Certified DevOps Engineer / Azure DevOps Expert</li><li>Certified Kubernetes Administrator (CKA)</li><li>ISTQB Advanced Test Automation Engineer</li><li>Certified Ethical Hacker (CEH) or equivalent security certifications</li><li>Financial domain certifications (e.g., CFA Level 1, NCFM, FRM) – a plus</li></ul><p></p>