DevSecOps Engineer

You will secure CI/CD and delivery infrastructure and implement supply chain security controls together with AppSec. You will improve AWS cloud security and contribute to Kubernetes security. You will implement IaC scanning, strengthen GitLab CI controls, manage misconfiguration practices, co-own Prisma Cloud, participate in incident response, and drive security adoption across DevOps teams.

Responsibilities

• Secure CI/CD and delivery infrastructure (runners, pipelines, build environment)
• Implement and enforce supply chain security controls with AppSec
• Build and evolve AWS cloud security practices
• Improve network-level security, including segmentation, service-to-service communication, and attack surface reduction
• Develop and strengthen security controls in GitLab CI
• Implement IaC security, including scanning in CI/CD and supporting manual IaC reviews
• Develop misconfiguration management practices
• Operate and co-own Prisma Cloud
• Contribute to Kubernetes security using Kyverno and policies
• Participate in incident response, investigations, and postmortems
• Drive adoption of security practices across DevOps teams

Requirements

• 3+ years in InfraSec or DevSecOps (not pure DevOps or AppSec)
• Strong hands-on experience with AWS security
• Strong hands-on experience with Kubernetes security
• Understanding of network security in cloud and Kubernetes environments
• Experience securing CI/CD and software delivery pipelines
• Experience with IaC security, including scanning and/or review
• Experience building or improving InfraSec and DevSecOps processes
• Ability to drive changes and influence engineering teams
• Ability to work in non-ideal, evolving environments
• Risk-based mindset with ability to prioritize based on real impact