Lead DevSecOps Engineer / Hybrid NYC / SaaS

A SaaS company in the logistics industry is hiring a Lead DevSecOps Engineer to lead their DevSecOps team and drive the implementation of security measures throughout the software development and deployment processes. The ideal candidate will have extensive experience in software development, cloud infrastructure, security, and automation. They will be responsible for identifying and mitigating security risks, ensuring compliance with industry standards, and implementing best practices for DevSecOps.

Responsibilities:

• Lead the design and implementation of secure software development and deployment pipelines
• Develop and maintain security policies, procedures, and standards for the software development lifecycle
• Identify and mitigate security risks throughout the software development and deployment process
• Ensure compliance with industry standards and regulations, such as PCI-DSS, HIPAA, and GDPR
• Collaborate with development, operations, and security teams to integrate security best practices into all aspects of the software development lifecycle
• Continuously monitor and improve the DevSecOps processes and tools to enhance security and efficiency
• Stay up-to-date with the latest security threats and industry trends to proactively identify and address potential risks
• Mentor and provide technical guidance to junior engineers in the DevSecOps team

Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, or a related field
• 7+ years of experience in software development and infrastructure
• 5+ years of experience in DevSecOps or a related field
• Strong knowledge of AWS cloud infrastructure and security best practices
• Experience with Infrastructure as Code tools such as Terraform and CloudFormation
• Experience with containerization and container orchestration platforms such as Docker and Kubernetes
• Knowledge of security standards and regulations, such as PCI-DSS, HIPAA, and GDPR
• Familiarity with automation tools and scripting languages such as Python, Bash, and PowerShell
• Experience with security testing tools and techniques, such as static analysis and penetration testing

Preferred Qualifications:

• Master's degree in Computer Science, Cybersecurity, or a related field
• Industry certifications such as CISSP, CISM, or AWS Security Specialty
• Familiarity with Agile development methodologies

What You Will Be Doing
Tech Breakdown

• 100% DevSecOps

Daily Responsibilities

• 90% hands-on
• 10% architecture and design

The Offer

• Bonus and equity eligible

You will receive the following benefits:

• Medical Insurance
• Dental Benefits
• Vision Benefits
• Paid Time Off (PTO)
• 401(k)

 
Applicants must be currently authorized to work in the US on a full-time basis now and in the future.

#LI-DI1