RemoteLeaf Logo
Log in Sign up

DevSecOps Engineer

8 hours, 15 minutes ago
United States
Full-time
Senior
Security Engineer
DevOps and Infrastructure
API Gateway AWS Azure CI/CD CloudFormation DevSecOps Docker Generative AI GitHub Actions GitLab CI JavaScript Jenkins Kubernetes Microservices OWASP Python Secrets Management Serverless Terraform WAF
Apply Now
TrueML

TrueML

TrueML develops innovative financial technology solutions that enhance customer experience and aim to improve the financial health of consumers by addressing their unique needs and preferences.

Internet Software & Services
51-250
Founded 2013
View All Jobs 10

Description

  • Embed security controls and scanners such as SAST, SCA, DAST, IaC, and container security into CI/CD pipelines.
  • Design and maintain automated security workflows across build, test, and deploy stages.
  • Implement security gates, policy enforcement, and compliance checks within delivery pipelines.
  • Secure AWS cloud-native architectures across services such as IAM, VPC, ECS/EKS, Lambda, S3, and API Gateway.
  • Integrate and operationalize CNAPP/CSPM tools such as Wiz or Prisma Cloud.
  • Define and maintain security policies for AWS workloads, with emphasis on containerized and serverless environments.
  • Build real-time monitoring and automated remediation for AWS resources to keep environments audit-ready for PCI and ISO 27001.
  • Perform threat modeling on applications and designs and translate findings into engineering actions.
  • Develop security standards for generative AI and assess AI-related attack surfaces and threats.
  • Secure Infrastructure as Code templates such as Terraform and CloudFormation, including cloud primitives like IAM, KMS, and WAF.

Requirements

  • 7-10 years of experience in software engineering, DevOps, or cloud engineering.
  • 3+ years of experience in a DevSecOps-focused role.
  • Deep experience in cloud security, vulnerability analysis, and incident response.
  • Demonstrable expertise in AWS security and securing containerized environments.
  • Strong experience securing Infrastructure as Code with Terraform and/or CloudFormation.
  • Top-tier security certification such as CISSP, SANS GIAC, or CASP.
  • Working knowledge of compliance frameworks such as PCI and ISO 27001.
  • Familiarity with OWASP and modern application security tooling.
  • Experience securing complex API integrations and data protection layers.
  • Strong scripting or programming skills in Python and JavaScript.
  • Experience with container security tools and platforms such as Docker and Kubernetes.
  • Understanding of modern DevSecOps and shift-left security practices.
  • Ability to collaborate across engineering, security, and DevOps teams.
  • Ability to communicate security strategy clearly to technical and non-technical stakeholders.
  • Interest in AI regulations and AI-driven threat behavior.

Benefits

  • Base salary range of $122,090 to $160,000 annually, depending on location, skills, and experience.
  • Remote-first work environment.
  • Flexible vacation.
  • Medical, dental, and vision insurance.
  • Traditional and Roth retirement savings options.
  • Company-paid disability and life insurance.
  • Flexible Spending Account and Limited FSA options.
  • Family-friendly parental leave, volunteer time off, and voting time off.
  • On-demand wellness platform access for you and up to 5 friends or family members.
  • PerkSpot discount program with access to 900+ merchants nationwide.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

GuidePoint Security

AI Security Engineer - Mid-Atlantic region (Remote in VA, MD, PA, NC, DE, NJ, or DC)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring an AI Security Engineer to help customers design, implement, secure, and operate generative AI security solutions across enterprise environments.

United States Full-time Senior Machine Learning Engineer Security Engineer
Cybersecurity Generative AI LLM Python SageMaker Terraform
6 hours, 45 minutes ago
Datadog

Staff Software Engineer - K9 Security

Datadog 5K-10K IT Services

Datadog is hiring a Staff Software Engineer on its Security Agent team to lead low-level Linux instrumentation and runtime security work that powers threat detection and workload protection across its security products.

Spain France Germany Ireland Italy Full-time Lead Security Engineer Software Engineer
Datadog Linux
7 hours ago
Puck

Director of Security

Puck 1-10 Internet Software & Services

Earnest is seeking a Director of Security to lead its security function and build a mature, business-aligned security program for a growth-stage fintech environment.

United States Full-time Executive Security Engineer
$240k-$300k
Ansible CI/CD DevSecOps Terraform
7 hours ago
Datadog

Staff Software Engineer - K9 Security

Datadog 5K-10K IT Services

Datadog is hiring a Staff Software Engineer for its Security Agent team to lead Linux instrumentation and runtime security work that supports threat detection, workload protection, and cloud security products at scale.

Portugal Full-time Lead Security Engineer Software Engineer
Linux
7 hours, 45 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers