Senior Devsecops engineer

A high-growth tech firm focused on innovative product development is building a brand-new, high-impact DevSecOps team within our SaaS Engineering department — and we’re looking for a Senior DevSecOps Engineer to help us embed security across the entire software development lifecycle (SDLC).

This role will be instrumental in designing secure cloud architectures , automating security in CI / CD , and enhancing reliability and security across our AWS-based platform.

What You’ll Do

Security Architecture & Governance

Design and enforce AWS security best practices across IAM, VPC, EKS / ECS, S3, RDS, and Lambda.

Lead CNAPP implementation (CSPM, CWP, CIEM) for cloud security posture management.

Optimize Datadog Cloud Security Management (CSM) and SIEM for threat detection and compliance.

Manage end-to-end vulnerability management and ensure SOC 2 / ISO 27001 compliance.

DevSecOps & Automation

Build secure CI / CD pipelines integrating SAST, DAST, SCA, and IaC scanning.

Drive Infrastructure-as-Code (Terraform) adoption for secure, scalable infrastructure.

Secure container deployments (Docker, Kubernetes / EKS / ECS).

Automate operational tasks to enhance reliability and reduce manual effort.

Leadership & Collaboration

Champion “Security by Design” across teams through early engagement in the SDLC.

Mentor engineers and foster a security-first culture.

Act as SME for incident response, cryptography, and API security.

What You’ll Bring

7+ years in Security Engineering or DevSecOps (with 2–3 years in a senior / lead role).

Strong hands-on experience in AWS security (GuardDuty, Security Hub, Config, KMS, WAF, Inspector).

Expertise with CNAPP tools (Wiz, Orca, Lacework) and Datadog CSM / SIEM .

Proficiency in Terraform (IaC), CI / CD security gating , and container security .

Scripting skills in Python, Go, or Bash .

Strong understanding of OWASP Top 10 and mitigation strategies.

Excellent communication, collaboration, and problem-solving skills.

Bonus Points

AWS Certified Security – Specialty / AWS DevOps Engineer – Professional.

Experience with Snyk, Aqua, Checkmarx, SonarQube .

Familiarity with SOC 2 / ISO 27001 frameworks and threat modeling (STRIDE).

Background in software development.