**The position is described below. If you want to apply, click the Apply Now button at the top or bottom of this page. After you click Apply Now and complete your application, you'll be invited to create a profile, which will let you see your application status and any communications. If you already have a profile with us, you can log in to check status.** Need Help? (https://www.brainshark.com/bbandt/careers-site-faq) _If you have a disability and need assistance with the application, you can request a reasonable accommodation. Send an email to Accessibility (careers@truist.com?subject=Accommodation%20request)_ _(accommodation requests only; other inquiries won't receive a response)._ **Regular or Temporary:** Regular **Language Fluency:** English (Required) **Work Shift:** 1st shift (United States of America) **Please review the following job description:** Senior Platform Engineer – Governance, Automation, and Enablement We are seeking a highly skilled and hands-on Senior Platform Engineer to help engineer and scale enterprise-grade platform services that power consistent, secure, and compliant software delivery. This role focuses on designing, building, and maintaining foundational platform capabilities—including change automation, asset lifecycle tracking, policy-as-code controls, and automated testing infrastructure—that enable high-velocity teams to deliver safely in regulated environments. The ideal candidate brings a software engineering mindset to platform problems, a deep understanding of declarative automation patterns, and experience working across platform domains to deliver reusable, standardized capabilities. Platform Engineering and Enablement • Design and build shared services and golden path tooling that standardize how teams manage change, track assets, and enforce policies across hybrid and cloud-native environments. • Engineer modular, reusable automation patterns that enable developer self-service while ensuring compliance with enterprise requirements. • Collaborate with architects and security stakeholders to translate platform governance requirements into codified controls and declarative enforcement logic. Change Management & Deployment Governance • Implement and maintain change automation pipelines that integrate with GitOps, CI/CD, and approval workflows, reducing friction while maintaining control integrity. • Contribute to the platform’s definition of done standards related to change visibility, audit trail completeness, rollback safety, and compliance readiness. Asset Lifecycle and Inventory Management • Contribute to the design and engineering of asset registration and classification systems for infrastructure, applications, APIs, secrets, and deployment artifacts. • Develop integration patterns with enterprise CMDBs or asset graphs to support traceability, policy enforcement, and cost attribution across the lifecycle. Policy-as-Code and Compliance Automation • Implement policy-as-code frameworks (e.g., OPA/Gatekeeper, Kyverno, Sentinel) to enforce runtime, provisioning, and configuration policies in code pipelines. • Build pre-commit and pre-deploy hooks to automate policy validation as part of SDLC, ensuring adherence to NIST, FFIEC, SOC2, and other regulatory standards. • Deliver actionable feedback loops and policy exemptions aligned with secure-by-design and audit-friendly expectations. Test Engineering and Quality Automation • Contribute to the design and extension of automated test frameworks for both application and infrastructure components—unit, integration, compliance, contract, and drift detection. • Integrate testing standards into golden pipelines, templates, and platform scaffolding used by internal teams. **ESSENTIAL DUTIES AND RESPONSIBILITIES** Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time. 1. Lead, guide, educate, and provide thought leadership to our delivery teams as related to their optimum adoption of DevSecOps practices and framework. 2. Champion the use of DevSecOps as a strategic asset of culture change to enhance the flow of business value to our clients. 3. Make informed decisions and determine which tool best fits any given situation based on proficiencies with multiple vendor products based on each of the above capabilities. 4. Develop and recommend DevSecOps best practices. 5. Use sophisticated, analytical thought to exercise judgment and design innovative solutions for the most complex components of the DevSecOps lifecycle. 6. Works independently, with guidance in only the most complex situations. 7. Provide technical and process guidance to junior team members. 8. Build and maintain the automation and streamlining of software delivery and operations for new or existing software applications through advanced proficiency and subject matter expertise in vendor tools in the DevOps lifecycle including: a. Infrastructure as Code; Agile and Development Lifecycle Management; Source Code Management; Build Orchestration; Build Management; Artifact Repository Management; Behavior Driven Development; Test Driven Development; Automated Testing including Unit Testing, Integration Testing, Functional Testing, Smoke Testing, Regression Testing, Stress Testing, and Performance Testing; Static Code Analysis; Load and Performance Testing; Artifact Scanning; Database Schema Management, Orchestration and Recovery; Compliance Automation and Audit Trails; Configuration Management; Containers; Application Release Automation; Deployment Strategies and Patterns including Blue/Green Deployment, Canary Releases, and Rolling Releases; Logging and Log Analytics; and Performance Monitoring and Management. 9. Liaise with DevSecOps Center for Enablement (C4E) to ensure that Enterprise tools or practices are followed, and to share information about any team specific tools or practices that may benefit other teams. 10. Active participant with the Truist Agile Guild and Agile DevOps Communities of Practice. **QUALIFICATIONS** **Required Qualifications:** The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. 1. Bachelor's degree in Business or Computer Science and ten+ years of experience in software engineering or IT including at least four years of experience in a role in which the primary responsibility is git based application code development and/or DevOps Engineering and/or the development, maintenance, and support of CI/CD pipelines or appropriate combination of industry related professional experience and education 2. Foundational cloud architecture knowledge 3. Must demonstrate ability to write code 4. Must demonstrate ability to construct basic application build pipeline **Preferred Qualifications:** 1. Hands-on experience with platform infrastructure tools such as: + Terraform, Helm, ArgoCD, GitHub Actions, Jenkins, Backstage, Kustomize 2. Experience building automated workflows for change, asset, or compliance lifecycle management in regulated environments. 3. Demonstrated success implementing policy-as-code solutions in CI/CD pipelines (e.g., OPA, Kyverno, Sentinel). 4. Proficiency in at least one scripting or infrastructure language (e.g., Python, Go, TypeScript, Bash). 5. Understanding of audit and regulatory control requirements in industries like finance, healthcare, or insurance (e.g., SOX, FFIEC, NIST 800-53/137). 6. Strong communication and documentation skills, with a track record of collaborating across platform, security, and compliance domains. 7. Experience integrating with enterprise CMDBs, asset discovery tools, or telemetry-driven asset classification solutions. 8. Familiarity with ServiceNow Change & Asset modules, or similar ITSM platforms, and experience driving automation around them. 9. Experience developing or contributing to internal developer platforms (IDPs) or developer onboarding scaffolding. 10. Prior contributions to reusable platform scaffolding, controller patterns, or GitOps operator frameworks. 11. Experience with compliance-as-code, GRC tooling integration, or mapping code-based controls to enterprise risk frameworks. **OTHER JOB REQUIREMENTS / WORKING CONDITIONS** **Sitting** Constantly (More than 50% of the time) **Standing** Occasionally (Less than 25% of the time) **Walking** Occasionally (Less than 25% of the time) **Visual / Audio / Speaking** Able to access and interpret client information received from the computer and able to hear and speak with individuals in person and on the phone. **Manual Dexterity / Keyboarding** Able to work standard office equipment, including PC keyboard and mouse, copy/fax machines, and printers. **Availability** Able to work all hours scheduled, including overtime as directed by manager/supervisor and required by business need. **Travel** Minimal and up to 10% **General Description of Available Benefits for Eligible Employees of Truist Financial Corporation:** All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position. Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates. Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays. For more details on Truist’s generous benefit plans, please visit our Benefits site (https://benefits.truist.com/) . Depending on the position and division, this job may also be eligible for Truist’s defined benefit pension plan, restricted stock units, and/or a deferred compensation plan. As you advance through the hiring process, you will also learn more about the specific benefits available for any non-temporary position for which you apply, based on full-time or part-time status, position, and division of work. **_Truist is an Equal Opportunity Employer that does not discriminate on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status, or other classification protected by law. Truist is a Drug Free Workplace._** EEO is the Law (https://www.eeoc.gov/sites/default/files/2022-10/EEOC\_KnowYourRights\_screen\_reader\_10\_20.pdf) Pay Transparency Nondiscrimination Provision (https://www.dol.gov/sites/dolgov/files/OFCCP/pdf/pay-transp\_%20English\_formattedESQA508c.pdf) E-Verify (https://e-verify.uscis.gov/web/media/resourcesContents/E-Verify\_Participation\_Poster\_ES.pdf)