Staff DevSecOps Engineer

Job Summary

Focused on integrating security into platform engineering, the full-time Staff DevSecOps Engineer will work remotely to champion a security-first mindset, design automation for compliance, and embed security practices into the development lifecycle on AWS/EKS.

Key responsibilities

• Champion a security-first mindset within Engineering, enhancing the security posture of platform infrastructure and managing vulnerabilities across AWS/EKS
• Design and build automation for continuous compliance with HITRUST controls, ensuring structured outputs flow into compliance tooling
• Lead platform security initiatives from design to operationalization, collaborating with the Security team to address threat assessments and control gaps

Required qualifications

• 8+ years in cloud-native infrastructure or platform engineering roles with proven technical leadership
• Hands-on expertise with AWS and Kubernetes (EKS) in production environments
• Strong understanding of supply chain risk, IAM/zero-trust patterns, and vulnerability management at the platform level
• Experience translating compliance frameworks into engineering controls, preferably with tools like Vanta
• Fluency in infrastructure-as-code (Terraform/HCL) and at least one scripting language (Python, Go, or Node.js/TypeScript)