DevSecOps Engineer

To Apply for this Job Click Here

Compensation: 130000 USD – 140000 USD / Year

***We are unable to work with 3rd-party or corp-to-corp candidates for this position***

Overview:

Our client will be hiring a Senior DevSecOps Engineer to architect, build, and manage the security posture and infrastructure that powers their SaaS platform. This is a high-ownership role ideal for a hands-on engineer with deep AWS security knowledge, strong automation skills, and a security-first mindset. You'll lead security initiatives, automate secure deployments, improve system observability, and guide teams toward robust, secure, and scalable solutions. You will also bring expertise in security automation, CI/CD pipeline security, secure networking, and incident response. This role is ideal for someone who thrives in a high-ownership environment and enjoys cross-functional collaboration to solve complex security and infrastructure challenges.

This role will report to the IT Security & Infrastructure Manager. This role has no direct reports.

100% REMOTE expectation, Eastern or Central Time zone required.

Responsibilities:

• Design and maintain a highly secure and scalable AWS-based infrastructure using security services like AWS WAF, IAM, and Inspector alongside services such as EC2, ECS, S3, and VPC.
• Automate security provisioning, secure CI/CD pipelines, and system observability.
• Proactively manage and improve security Key Lifecycle Objectives (KLOs) such as vulnerability scanning and certificate management.
• Lead the development and implementation of security best practices, including threat modeling and incident response.
• Own and deliver mid-sized security projects (e.g., IAM role refactoring, multi-region security rollout, new environment security hardening).
• Document security standards, decisions, and automation workflows in a clear, shareable format.
• Participate in incident response, root cause analysis, and on-call rotation.
• Mentor teammates and support cross-functional security needs.

Qualifications:

• 5 years in SecOps, DevOps, and/or security engineering roles with heavy AWS usage.
• Deep experience with AWS security services: IAM, WAF, Config, Inspector, Security Hub, and KMS, as well as general services like EC2, ECS/Fargate, DynamoDB, and VPC.
• Strong Infrastructure as Code skills, with a focus on security policies and controls.
• Expertise in CI/CD pipeline security, including static and dynamic analysis tools.
• Strong scripting (Bash, Python) and automation fluency.

BONUS EXPERIENCE (it'll be great if you had)

• Proficient in security monitoring and observability best practices (alerting, metrics, distributed tracing).
• Solid understanding of cloud networking, IAM policies, encryption (KMS), and secrets management.
• Familiar with incident response workflows, root cause analysis, and operational runbooks.
• Experience with log analysis and observability platforms (e.g., Datadog, SumoLogic, CloudWatch).
• Serverless security using Lambda, SQS, and SNS.
• Experience with enterprise WiFi authentication and captive portal management.
• SQL Server Always On Availability Group configuration and management.

• Experience with compliance efforts (SOC 2, PCI) via logging, identity boundaries, and change management.
• AWS Organizations and multi-account security governance.
• Hands-on experience maintaining SQL-based data stores, including monitoring health, ensuring compliance, managing performance and stability, and supporting backup/recovery and lifecycle policies.

• Certified Cloud Security Professional (CCSP)
• AWS Certified Security – Specialty
• AWS Certified DevOps Engineer – Professional
• AWS Certified Solutions Architect – Associate or Professional

To Apply for this Job Click Here