Director of Software Engineering at Affirm focusing on site reliability engineering. Leading a global team and establishing risk management practices in a remote environment.
About the role
- Senior DevSecOps Engineer delivering secure and scalable infrastructure solutions. Collaborating with teams to integrate security best practices across software development lifecycle.
Responsibilities
- Grow as the Subject Matter Expert (SME) for security best practices within the DevOps team
- Promote a culture of security, automation, and continuous improvement by mentoring team members
- Integrate and manage security controls and best practices across every stage of the software development lifecycle
- Manage DAST, IAST, and SAST tools to identify and remediate application and code vulnerabilities
- Automate security testing and compliance checks within DevOps workflows, including Docker image security scanning
- Develop and enforce policy as code for Kubernetes environments to ensure consistent security and compliance Implement and manage infrastructure as code (IaC) solutions for cloud and on-premises environments
- Collaborate with development, operations, and security teams to address vulnerabilities and improve overall security posture
- Continuously evaluate and improve DevSecOps tools, processes, and standards
Requirements
- Bachelor’s degree in Computer Science, Information Security, Engineering, or a related field
- 5+ years of experience with DevSecOps practices, integrating security into CI/CD pipelines and the software development lifecycle
- 3+ years of hands-on experience deploying, managing, and securing Kubernetes clusters in production environments
- Proven expertise with policy as code frameworks (e.g., OPA/Gatekeeper, Kyverno) for Kubernetes security and compliance
- Demonstrated proficiency implementing and operating DAST, IAST, and SAST tools for application and code security
- 5+ years of experience with Docker image security scanning and container vulnerability management
- Strong background with infrastructure as code (IaC) tools such as Terraform, Helm, or Ansible
- Expert-level experience with Linux Experience with cloud platforms (AWS, GCP, Azure) and their security best practices
- Solid scripting and automation skills (e.g., Python, Bash, Go)
- Experience creating executive-level security reports and KPIs
- Excellent analytical, troubleshooting, and incident response abilities
- Strong communication and collaboration skills, with a passion for mentoring and continuous improvement
- Experience with eBPF and Cilium Tetragon is a plus
Benefits
- We believe in providing with company ownership, competitive pay, and a range of meaningful benefits is the start of creating a culture where people want to give the best they’ve got — not because they’re simply making money, but because they’ve fallen in love with our vision, mission, values, and team.******During the interview process, your Recruiter will review our total rewards (base, equity, bonus, perks, benefit, culture) offerings. The final offer is determined by your proficiencies within this level.**
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Senior Data DevOps Engineer at Scene+, supporting reliability and deployment of data platforms. Collaborating across teams to design automated pipelines and ensure operational stability.
Hands - on Senior DevOps Developer designing, building, and operating secure cloud infrastructure. Enabling engineering teams to deploy mission - critical digital solutions into the nuclear industry.
DevOps Manager leading global development organization at Motorola Solutions. Empowering teams and optimizing development processes and tools.
DevSecOps Engineer responsible for building CI/CD pipelines and collaborating with security and operations teams at Aviso Wealth. Contributes to a culture of continuous improvement by implementing best practices.
DevOps Engineer developing functional systems that improve customer experience for S&P Global's applications. Responsibilities include automation, monitoring and maintaining infrastructure using cutting - edge technologies.
DevOps Manager leading engineering operations for a global translation company. Overseeing cloud infrastructure, deployment pipelines, and enhancing operational reliability while working remotely.
Build & Release Engineer at Parallel Domain improving CI/CD for simulation and Physical AI systems. Leading infrastructure initiatives ensuring efficient build processes.
Integrator role in Azure DevSecOps at Desjardins focusing on the stability of Azure infrastructure and supporting developer teams. Involves cloud platform management and automation for optimal service delivery.
Reliability Engineer focusing on developing and improving maintenance strategies for rotating equipment in Orica's Manufacturing Centre. Ensuring safety, efficiency, and compliance in operations.