About the job :
At FourKites we have the opportunity to tackle complex challenges with real-world impacts.
Whether its medical supplies from Cardinal Health or groceries for Walmart, the FourKites platform helps customers operate global supply chains that are efficient, agile and sustainable.
Join a team of curious problem solvers that celebrates differences, leads with empathy and values inclusivity. We are seeking an experienced DevSecOps Engineer with a strong background in cloud security, infrastructure management, and secure software development.
The ideal candidate will have extensive hands-on expertise across major cloud platforms, containerization technologies, and security frameworks.
You will be responsible for architecting, implementing, and maintaining secure cloud environments while ensuring that security is seamlessly integrated throughout the development lifecycle.
What youll be doing :
Cloud Infrastructure & Security
- Architect and secure highly available, scalable, and fault-tolerant systems across AWS, GCP, and Azure environments
- Design and implement robust Layer 3 / Layer 4 firewall solutions and network security controls
- Implement and manage intrusion detection systems (IDS) and intrusion prevention systems (IPS)
- Design and deploy container security strategies for Docker and Kubernetes environments
- Manage cloud security services including WAF, service mesh, and threat modeling
- Ensure 99.99% uptime while maintaining strong security posture
DevOps & Automation :
Leverage automation technologies (Ansible, Chef, Puppet, Jenkins) to manage infrastructure and deployment pipelinesDevelop, deploy, and maintain infrastructure-as-code solutions using Terraform, CloudFormation, and cloud-specific CLIsBuild and maintain secure CI / CD pipelines with integrated security testingIdentify and implement open-source security tools as alternatives to commercial solutions without compromising reliability or performanceSecurity Compliance & Auditing :
Ensure compliance with PCI-DSS requirements and prepare systems for PCI auditsParticipate in security assessments, including threat modeling and vulnerability scanningDocument security controls and maintain evidence for compliance requirementsCreate and maintain security documentation and training materialsAPI & Application Security :
Implement API security best practices including authentication, authorization, and rate limitingTroubleshoot and resolve SSL / TLS issues across various environmentsPerform security assessments of applications and APIsDevelop secure coding guidelines and review processesMonitoring & Incident Response :
Lead incident response activities for security eventsConfigure and maintain security monitoring solutionsDevelop automated security responses to common threatsConduct post-incident analysis and implement you are :8+ years of experience in DevOps, Security Engineering, or similar technical rolesStrong hands-on experience with major cloud platforms (AWS, GCP, Azure)Deep understanding of network security concepts including Layer 3 / Layer 4 firewallsExperience with intrusion detection systems (IDS) and intrusion prevention systems (IPS)Expertise in container security and Kubernetes security controls (CKA / CKAD / CKS preferred)Experience supporting systems requiring 99.99% uptime or higherProven ability to implement open-source security tools as alternatives to commercial solutionsExperience with PCI-DSS compliance requirements and audit processesStrong knowledge of API security implementation, including rate limiting and authenticationProficiency in troubleshooting SSL / TLS issues and certificate managementExperience with infrastructure as code (Terraform, CloudFormation, etc.)Proficiency in at least one scripting / programming language (Python, Bash, Java, C#, etc.)Strong analytical, troubleshooting, and problem-solving skillsExcellent communication skills to bridge technical and non-technical teamsProactive approach to identifying and mitigating security risksAbility to work in a fast-paced environment and manage multiple tasks concurrentlyPassion for continuous learning and staying current with security Qualifications :Security certifications (CISSP, CEH, AWS Security, PCI QSA)Cloud platform certifications (AWS Certified Solutions Architect, Azure Security Engineer, GCP Professional Cloud Security Engineer)Experience with other compliance frameworks (SOC2, ISO27001, NIST)Experience with security monitoring and SIEM toolsKnowledge of zero-trust architecture principlesExperience mentoring junior team we are :FourKites, the leader in AI-driven supply chain transformation for global enterprises and pioneer of advanced real-time visibility, turns supply chain data into automated action.
FourKites Intelligent Control Tower breaks down enterprise silos by creating a real-time digital twin of orders, shipments, inventory and assets.
This comprehensive view, combined with AI-powered digital workers, enables companies to prevent disruptions, automate routine tasks, and optimize performance across their supply chain.
FourKites processes over 3.2 million supply chain events daily - from purchase orders to final delivery - helping 1,600+ global brands prevent disruptions, make faster decisions and move from reactive tracking to proactive supply chain at FourKites :
We provide competitive compensation with stock options, outstanding benefits and a collaborative culture for all employees around the globe, including :
5 global recharge days, in addition to standard holidays, and a hybrid, flexible approach to work.Parental leave for all parents, an annual wellness stipend and volunteer days also provide you with time and resources forself care and to care for others.
Opportunities throughout the year to learn and celebrate diversity.Access to leading AI tools and foundation models, with the freedom to experiment and find creative ways to be more effective in your roleAnd we're always listening for new ways to support everyone in and out of the office
(ref : hirist.tech)
