RemoteLeaf Logo
Log in Sign up

DevSecOps Engineer

1 hour, 46 minutes ago
Europe
Full-time
Senior
DevOps Engineer
DevOps and Infrastructure
CI/CD DevSecOps Go Kubernetes Penetration Testing Python Secrets Management Terraform
Apply Now
Alpaca

Alpaca

Alpaca is a developer-first API for stock and crypto trading, offering easy-to-use APIs for building apps and trading algorithms.

Capital Markets
51-250
Founded 2015
$87M raised
View All Jobs 25

Description

  • Embed security controls into CI/CD pipelines, including IaC scanning, software composition analysis, secrets checks, policy-as-code, and deployment guardrails.
  • Lead vulnerability and patch management by automating discovery, prioritization, and remediation across cloud workloads and dependencies.
  • Harden cloud and Kubernetes environments through secure configurations, network segmentation, workload identity management, and automated compliance checks.
  • Improve supply chain security by generating SBOMs, signing artifacts, governing dependencies, and implementing integrity controls.
  • Create hardened IaC modules, templates, tooling, and documentation that provide secure defaults for developers.
  • Own and validate cyber-resiliency standards such as secure failover, secure backups, and disaster recovery playbooks through rehearsals.
  • Develop safer deployment patterns, including canary rollouts, automated rollback, and blast-radius reduction guardrails.
  • Improve detection and response through high-signal alerts, forensic logging, and security telemetry, and partner on incident handling.
  • Conduct security reviews and threat modeling for new services and major architecture changes.
  • Support compliance and audit readiness by operationalizing controls, producing evidence, and maintaining control health.
  • Champion secure coding practices and risk-based decision-making across DevOps and Engineering teams.
  • Define and report security KPIs and measurable improvements to leadership.

Requirements

  • 5+ years of experience in DevSecOps, security engineering, or cloud security in a modern cloud-native environment.
  • Strong hands-on experience with cloud service providers, Kubernetes, Terraform, and container security.
  • Deep understanding of secure CI/CD, including IaC security, dependency/SCA, secrets scanning, and policy-as-code.
  • Solid background in identity and access security.
  • Experience automating vulnerability management and patching workflows across cloud and container ecosystems.
  • Strong familiarity with detection engineering, logging/telemetry, and incident response collaboration.
  • Proficiency in Python, Go, or a similar scripting/programming language for automation and security tooling.
  • Comfort working cross-functionally with DevOps and Engineering teams and explaining risk in practical terms.
  • Comfort participating in on-call rotations.
  • Interest in Alpaca’s mission and what the company is building.
  • Experience securing financial, trading, or other highly regulated platforms (preferred).
  • Knowledge of regulatory frameworks common in fintech, such as SOC 2, ISO 27001, and PCI (preferred).
  • Experience with supply-chain security, such as SBOMs, Sigstore, artifact signing, or software integrity programs (preferred).
  • Familiarity with offensive security, bug bounty triage, or penetration testing (preferred).
  • Security or cloud certifications such as CISSP, OSCP, GIAC, or GCP/AWS Security (preferred).
  • Bachelor's degree in Computer Science, Information Security, or equivalent experience (preferred).
  • Business acumen to balance stakeholder tradeoffs, technical feasibility, and budget constraints (preferred).

Benefits

  • Competitive salary with stock options.
  • Health benefits.
  • One-time USD $500 new hire home-office setup allowance.
  • Monthly USD $150 stipend via a Brex card.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Bugcrowd

Manager, Engineering (Identity and Access Management)

Bugcrowd 1K-5K Internet Software & Services

Bugcrowd is hiring a Software Engineering Manager to lead its Identity and Access Management team in building secure, scalable authentication, authorization, and identity services across the company’s product ecosystem.

United States Full-time Lead Engineering Manager Security Engineer
$138k-$213k
Agile AWS Azure Encryption GCP Go Java JWT Node.js OpenID Connect Ruby SAML Scrum
1 minute ago
Tactacam

DevOps Engineer

Tactacam 51-250 Household Durables

Tactacam is seeking a DevOps Engineer to support and improve the reliability, scalability, and security of its AWS- and Lambda-based data infrastructure and development workflows.

United States Full-time Senior DevOps Engineer
Android AWS AWS CDK Bash Datadog Elasticsearch GitHub Actions iOS JavaScript Kubernetes OpenSearch Python Serverless Shell Scripting Terraform TypeScript
1 minute ago
Galaxy

Staff Development Experience Engineer

Galaxy 251-1K Capital Markets

Galaxy is seeking a hands-on Technical Lead to improve developer experience and platform delivery across its digital assets and data center infrastructure environment.

United States Full-time Lead DevOps Engineer Technical Lead
AWS Azure CI/CD Flux GCP GitHub GitHub Actions GitOps Go HashiCorp Vault Helm Jenkins Kubernetes Python Rancher Terraform TypeScript
16 minutes ago
BOLD

Senior Engineer-Devops, Machine Learning Operations

BOLD 251-1K Internet Software & Services

BOLD is hiring a DevOps/MLOps professional to own production machine learning environments and infrastructure for data science teams.

India Senior DevOps Engineer Machine Learning Engineer
Apache Airflow AWS Bash CI/CD DynamoDB FastAPI Linux MLflow MLOps MongoDB MySQL OpenSearch Python SageMaker Spring Boot
31 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers