Senior DevSecOps Engineer

Job Summary

Owning and operating security tooling, the full-time Senior DevSecOps Engineer will manage vendor relationships and drive application and cloud security programs while working remotely.

Key responsibilities

• Secure AWS infrastructure and systems, review infrastructure-as-code changes, and support secrets management
• Operate and tune security tooling, monitor security alerts, and respond to cross-team security requests
• Manage the vCISO relationship, oversee annual penetration tests, and build a multi-quarter security roadmap

Required qualifications

• Hands-on AWS experience with cloud security posture and networking
• Experience with infrastructure-as-code (Terraform or CloudFormation) and vulnerability management
• Strong understanding of IAM, network security, encryption, and secrets management
• Experience with threat modeling, secure code review, and CI/CD security gating
• Strong scripting and automation skills (Python, Bash, or similar)