Location: Remote (U.S. Persons Only)

Clearance: Not required, but must be eligible to work on U.S.-based projects

‍

About the Role

We're looking for a Mid-Level SecDevOps Engineer to help secure and streamline delivery pipelines for cloud-native, containerized applications. You'll work across engineering and security teams to embed best practices into GitLab CI/CD workflows, harden AWS infrastructure, and automate Kubernetes deployments - all with security built in from day one.

What You'll Do

• Build and maintain GitLab CI/CD pipelines with integrated security checks
• Harden and operate AWS infrastructure, including IAM, VPCs, EC2, and EKS
• Automate infrastructure provisioning using Terraform, Helm, and Ansible
• Implement vulnerability management using tools like Trivy, Grype, or Anchore
• Integrate SAST, DAST, and SBOM tools into build and deployment flows
• Apply compliance-aware practices using frameworks like NIST 800-53 or CIS Benchmarks
• Collaborate with developers, architects, and security engineers to drive secure-by-design principles

Requirements

• 3-5 years of hands-on experience in DevOps, SecOps, or Cloud Engineering
• Strong experience with GitLab CI/CD (self-managed or SaaS)
• Practical experience working in AWS environments
• Proficiency in Bash, Python, or Go for scripting and automation
• Familiarity with Kubernetes and secure container deployment workflows
• Must be a U.S. Person (U.S. citizen or lawful permanent resident)

‍Bonus Points For‍

• Experience with Falco, OPA/Gatekeeper, or Wazuh
• GitOps experience (e.g., ArgoCD or Flux)
• Familiarity with secure image pipelines, container scanning, and policy-as-code
• Contributions to open-source DevSecOps tooling

What You Get

• Fully remote work environment with a collaborative, engineering-led culture
• Ability to influence and shape security-first delivery practices
• A fast-moving team focused on solving real problems with automation and integrity
• Competitive compensation and the freedom to do your best work