This position is subject to U.S. export control regulations. Only U.S. citizens, U.S. nationals, naturalized citizens, and lawful permanent residents (Green Card holders) are eligible for consideration. Individuals requiring visa sponsorship or working under a temporary visa status (e.g., H-1B, L-1, F-1, OPT, CPT, etc.) are not eligible for this role.



About the Role

We're looking for a Mid-Level SecDevOps Engineer to help secure and streamline delivery pipelines for cloud-native, containerized applications. You'll work across engineering and security teams to embed best practices into GitLab CI/CD workflows, harden AWS infrastructure, and automate Kubernetes deployments - all with security built in from day one.

What You'll Do

• Build and maintain GitLab CI/CD pipelines with integrated security checks
• Harden and operate AWS infrastructure, including IAM, VPCs, EC2, and EKS
• Automate infrastructure provisioning using Terraform, Helm, and Ansible
• Implement vulnerability management using tools like Trivy, Grype, or Anchore
• Integrate SAST, DAST, and SBOM tools into build and deployment flows
• Apply compliance-aware practices using frameworks like NIST 800-53 or CIS Benchmarks
• Collaborate with developers, architects, and security engineers to drive secure-by-design principles

Requirements

• 3-5 years of hands-on experience in DevOps, SecOps, or Cloud Engineering
• Strong experience with GitLab CI/CD (self-managed or SaaS)
• Practical experience working in AWS environments
• Proficiency in Bash, Python, or Go for scripting and automation
• Familiarity with Kubernetes and secure container deployment workflows
• Must be a U.S. Person (U.S. citizen or lawful permanent resident)

‍Bonus Points For‍

• Experience with Falco, OPA/Gatekeeper, or Wazuh
• GitOps experience (e.g., ArgoCD or Flux)
• Familiarity with secure image pipelines, container scanning, and policy-as-code
• Contributions to open-source DevSecOps tooling

What You Get

• Fully remote work environment with a collaborative, engineering-led culture
• Ability to influence and shape security-first delivery practices
• A fast-moving team focused on solving real problems with automation and integrity
• Competitive compensation and the freedom to do your best work