Job Description
Job DescriptionOverview
We are hiring a seasoned Staff DevSecOps Engineer to embed security at every stage of the software development lifecycle. This is a hands-on role for someone passionate about security automation, cloud platforms, and driving secure DevOps practices. Ideal candidates bring 5–8+ years of experience and a strong grasp of CI/CD, Kubernetes, cloud security, and infrastructure as code.
Key Responsibilities
- Integrate security seamlessly into the CI/CD pipeline across the software development lifecycle.
- Design, implement, and manage security automation tools and workflows.
- Define and enforce cloud and on-premises security policies and best practices.
- Monitor, analyze, and remediate security vulnerabilities and incidents.
- Perform code reviews, vulnerability scans, and penetration tests.
- Secure Kubernetes clusters and containerized environments.
- Implement and manage security tools (firewalls, IDS/IPS, endpoint protection).
- Automate security tasks using Python and shell scripting.
- Manage infrastructure using Terraform, OpenTofu, or CloudFormation.
- Participate in incident response and disaster recovery planning.
Qualifications
- 5+ years in DevSecOps, Security Engineering, or DevOps with a strong security focus.
- Hands-on experience with AWS (or GCP/Azure with willingness to move into AWS).
- Proficient with CI/CD tools such as GitHub Actions, Jenkins, GitLab CI, or CircleCI.
- Strong Kubernetes experience in production environments.
- Experience with infrastructure-as-code tools: Terraform, OpenTofu, or CloudFormation.
- Strong programming skills in Python and shell scripting.
- Deep knowledge of secure coding practices, encryption, and access control.
- Excellent communication and cross-functional collaboration skills.
- US Citizenship or a Green Card is required due to ITAR data handling.
Preferred Qualifications
- Security architecture and secure system design experience.
- Experience with JavaScript and securing JavaScript-based applications.
- Certifications such as CISSP, Security+, or AWS Security Specialty are a plus.
- Experience automating security in microservices architectures.
- Bachelor’s degree in Computer Science, Information Security, Engineering, or equivalent experience.
Recruiter Notes
- Ideal candidates are passive job seekers with startup or technology company experience.
- Avoid candidates from finance or government backgrounds with limited hands-on exposure.
- Work mode: Hybrid (3 days onsite for time zone alignment with EU).