As a DevSecOps Engineer, you will bridge security, development, and operations to build robust, secure systems across cloud environments. Your focus will be on automating security practices throughout the development lifecycle, ensuring infrastructure is resilient, compliant, and rapidly deployable.
Key Responsibilities
- Design and enforce security within CI/CD pipelines using policy-as-code, IaC scanning, and automated guardrails
- Implement and maintain secure configurations across Kubernetes and cloud platforms, including identity, networking, and workload protection
- Lead vulnerability and patch management programs with automated detection, prioritization, and remediation
- Develop secure deployment patterns such as canary releases and automated rollbacks to reduce operational risk
- Generate and manage Software Bill of Materials (SBOMs), enforce artifact signing, and strengthen software supply chain integrity
- Build hardened infrastructure templates and tooling to guide developers toward secure-by-default patterns
- Own cyber-resiliency practices including disaster recovery validation, backup integrity, and failover testing
- Enhance detection capabilities through high-fidelity alerts, telemetry, and forensic logging
- Collaborate with engineering and SecOps on incident response, post-mortems, and risk mitigation
- Support offensive security initiatives like penetration tests and bug bounty programs, ensuring findings are prioritized and resolved
- Conduct threat modeling and security reviews for new architectures and services
- Enforce least privilege access, secure authentication, and secrets lifecycle management
- Operationalize compliance controls for standards such as SOC 2, ISO 27001, or PCI, and support audit readiness
- Measure and report on security KPIs including time to detect, remediate, and coverage of automated controls
- Champion secure coding practices and help teams make informed, risk-based decisions
Qualifications
You bring deep experience in cloud security, automation, and secure delivery pipelines. You’re fluent in scripting languages like Python or Go and have hands-on expertise with Terraform, Kubernetes, container security, and cloud service providers. You’re comfortable working cross-functionally, explaining security tradeoffs clearly, and operating in on-call rotations.
Preferred background includes securing regulated systems such as financial platforms, familiarity with SBOM and software integrity tools like Sigstore, and relevant certifications (e.g., CISSP, OSCP, or cloud security credentials). A degree in Computer Science or related field is valued, but equivalent experience is equally considered.
Environment & Benefits
This is a fully remote, globally distributed role. We support asynchronous collaboration across time zones and value accountability, empathy, and curiosity. You’ll receive a competitive salary, equity, a one-time $500 home office stipend, and a monthly $150 stipend for work-related expenses. We are committed to building a diverse, inclusive team and fostering a developer-first culture with strong open-source values.
