Job Description
**About the Role:**
**Grade Level (for internal use):**
12
The DevSecOps Engineer – Artifact Management & Software Supply Chain Security focuses on securing and governing enterprise artifact and dependency management platforms. This role combines DevSecOps, application security, and cloud security to ensure that build artifacts and dependencies are trusted, curated, and consumed securely across CI/CD pipelines and cloud environments.
**Key Responsibilities**
+ Design, deploy, and operate enterprise artifact repository platforms supporting cloud and hybrid environments.
+ Define and enforce package curation, promotion, and trust models aligned with application security and compliance requirements.
+ Implement and govern waiver and approval workflows for dependency and artifact usage, ensuring risk-based decision‑making.
+ Partner with AppSec, platform, and engineering teams to standardize secure dependency and artifact consumption patterns...
**Grade Level (for internal use):**
12
The DevSecOps Engineer – Artifact Management & Software Supply Chain Security focuses on securing and governing enterprise artifact and dependency management platforms. This role combines DevSecOps, application security, and cloud security to ensure that build artifacts and dependencies are trusted, curated, and consumed securely across CI/CD pipelines and cloud environments.
**Key Responsibilities**
+ Design, deploy, and operate enterprise artifact repository platforms supporting cloud and hybrid environments.
+ Define and enforce package curation, promotion, and trust models aligned with application security and compliance requirements.
+ Implement and govern waiver and approval workflows for dependency and artifact usage, ensuring risk-based decision‑making.
+ Partner with AppSec, platform, and engineering teams to standardize secure dependency and artifact consumption patterns...
Apply for this Position
Ready to join S&P Global? Click the button below to submit your application.
Submit Application