RemoteLeaf Logo
Log in Sign up

DevSecOps Lead

5 hours, 20 minutes ago
United States
Full-time
Lead
DevOps Engineer
DevOps and Infrastructure
CI/CD DevSecOps Git GitHub Actions Jenkins
Apply Now
YipitData

YipitData

YipitData specializes in market research for the disruptive economy by analyzing billions of data points daily to deliver accurate and timely insights on over 1,000 companies, aiding investors in making informed decisions and helping businesses enhance...

Professional Services
251-1K
Founded 2013
$492M raised
View All Jobs 9

Description

  • Own the roadmap for secure SDLC controls and partner with Engineering and Product to roll out practical, scalable, and auditable standards.
  • Develop and maintain secure development policies, implementation standards, and guidance for engineering teams.
  • Drive adoption of controls across repositories and pipelines, including branch protection, pull request requirements, code review, secrets scanning, dependency scanning, infrastructure-as-code scanning, and container image scanning.
  • Partner with Engineering and Product to integrate security guardrails into CI/CD workflows and developer tooling.
  • Support vulnerability management operations, including intake, triage, remediation tracking, verification, and reporting.
  • Build reference implementations, templates, and onboarding guidance to help teams adopt secure patterns consistently.
  • Define and report metrics such as control coverage, vulnerability aging, SLA performance, and remediation progress.
  • Prepare audit-ready documentation and evidence showing controls are implemented and operating effectively.
  • Evaluate and prioritize future improvements such as SAST, DAST, SBOM generation, image signing, and software supply chain security enhancements.

Requirements

  • 6+ years of experience in DevSecOps, security engineering, application security, cloud security, or DevOps, including leading cross-functional programs or technical initiatives.
  • Experience building or improving Secure SDLC, CI/CD security, or vulnerability management programs in modern engineering environments.
  • Understanding of Git-based workflows, CI/CD systems, cloud-native development, containers, and repository security controls.
  • Experience implementing or governing controls such as branch protection, code review, secrets scanning, SAST, SCA, infrastructure-as-code scanning, or container scanning.
  • Ability to translate security requirements into clear standards and practical implementation plans for engineering teams.
  • Comfort influencing stakeholders across Security, Engineering, and leadership.
  • Experience with GitHub Enterprise, GitHub Actions, Jenkins, or similar platforms, preferred.
  • Experience supporting SOC 2, audit readiness, or customer assurance efforts, preferred.
  • Familiarity with software supply chain security concepts such as SBOMs, image signing, and artifact integrity, preferred.
  • Cannot require current or future visa sponsorship.

Benefits

  • Competitive salary with annual base compensation up to $250k plus a 10% target variable.
  • Comprehensive benefits package.
  • Flexible work hours.
  • Flexible vacation.
  • Generous 401(k) match.
  • Parental leave.
  • Team events.
  • Wellness budget and learning reimbursement.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Ping Identity

Marketing Technology Engineer

Ping Identity 1K-5K IT Services

Ping Identity is seeking a Marketing Technology Engineer to support its Marketing Operations team by building and maintaining the backend systems, integrations, and automations that keep marketing campaigns scalable, reliable, and data accurate.

India Full-time Senior DevOps Engineer Marketing Specialist
Asana CI/CD Git JSON Node.js OAuth Python REST API Salesforce SQL TypeScript
5 hours, 20 minutes ago
Rithum

Staff Information Security Engineer - AI First

Rithum Internet Software & Services

Rithum is hiring a Staff AI-First Information Security Engineer to build and enforce security guardrails for AI-powered products, agents, and enterprise systems while helping the company move quickly without increasing hidden risk.

United States Full-time Senior AI Engineer Security Engineer
$170k-$220k
AWS LLM Python SIEM Terraform
5 hours, 35 minutes ago
Exadel

Senior DevOps Engineer

Exadel 1K-5K Internet Software & Services

Exadel is hiring a network transformation engineer to support a global enterprise client’s office network modernization and migration efforts across international sites.

Brazil Senior DevOps Engineer
AWS Azure Bash GCP PowerShell Python
5 hours, 35 minutes ago
Exadel

Middle/Senior Software Engineer GitHub Governance

Exadel 1K-5K Internet Software & Services

Exadel is hiring a GitHub Enterprise Platform Engineer to support a major Latin American digital banking client by improving repository governance, CI/CD automation, and developer platform reliability.

Brazil Full-time Senior DevOps Engineer Software Engineer
AWS Azure CI/CD CloudFormation DevSecOps GCP Git GitHub Actions Go Python Terraform
5 hours, 35 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers