DevSecOps Engineer

About the Company: 

Our client is a private investment firm combining capital, strategic insight, and engineering capabilities to build and scale complex businesses. They manage diverse asset strategies and collaborate closely with portfolio companies on operational, simulation, and engineering infrastructure.

Responsibilities: 

• Research, evaluate, and implement security tools and technologies to enhance, automate, or introduce new security capabilities for the firm
• Develop automation scripts and integrate security tools into existing workflows to improve operational efficiency
• Continuously monitor the performance and effectiveness of deployed security tools and solutions, ensuring that they are configured optimally to detect and respond to emerging threats
• Collaborate with cross-functional teams to manage and prioritize vulnerabilities detected by the security team
• Participate in code and architecture reviews
• Provide guidance on secure application design patterns and collaborate with application teams identifying best practices within code
• Document tool configurations, processes, and procedures to ensure repeatability and maintainability of attack surface

Requirements: 

• Bachelor’s degree in computer science or information security
• 5-7 years of experience in infrastructure, security, and/or DevOps
• Experience with Github, Github Actions, Containers, API(s), and Terraform
• Familiarity with tools used in DAST, SAST, SBOM, and SCA Tools
• Strong experience in configuring and integrating with on prem estates and multi-cloud environments
• Knowledge of automation tools and scripting languages
• Experience assessing and hardening Kubernetes and Containers environments
• Experience integrating DevSecOps tooling into development pipelines
• Experience in implementing enterprise-wide vulnerability management solutions

Salary Range: 

$180,000-$190,000

#LI-AR1