דרושים » תוכנה » Senior DevSecOps Engineer

we are seeking a seasoned DevSecOps Engineer with deep expertise in AWS and GCP cloud infrastructure to join our growing security team. In this role, you will take the lead in safeguarding, designing, automating, and supporting the security of our companys cloud-native and IT environments.
As a key contributor to our cloud security strategy, you will conduct security assessments, manage vulnerabilities, and drive detection and response activities across our environments. You'll collaborate closely with our software development and DevOps teams to secure our CI/CD pipelines, production infrastructure, and core platform.
Additionally, you'll work alongside DevOps and IT teams to protect our companys scalable marketplace backend and massive data processing pipelinehandling billions of daily events and supporting hundreds of microservices.
What am I going to do?
CI/CD Security: Design, build, and maintain secure CI/CD pipelines with integrated automated security testing (e.g., SAST, DAST, SCA, container scanning) for our company's broad range of applications and services.
Threat Modeling & Risk Mitigation: Lead security reviews and threat modeling efforts across CI/CD and production environments, identifying and addressing risks to our companys products and supporting services.
Infrastructure as Code (IaC) Security: Define and implement best practices for secure IaC (e.g., Terraform, Ansible), including static analysis, misconfiguration detection, and compliance validation.
Container Security: Deploy and manage security solutions for containerized environments, focusing on secure image management, runtime protection, and policy enforcement.
Secrets Management: Establish and manage secure secrets management infrastructure (e.g., HashiCorp Vault or equivalent platform-agnostic solutions) across DevOps workflows.
Security Automation: Automate key security operations, including vulnerability scanning, compliance auditing, configuration checks, and incident response playbooks.
Cross-Functional Collaboration: Partner with DevOps and engineering teams to embed security into the development lifecycle, offering hands-on guidance and secure coding best practices.
Tooling & Innovation: Evaluate, implement, and maintain modern security tools to bolster our companys DevSecOps capabilities, with an emphasis on automation and operational efficiency.
Compliance & Governance: Ensure development and deployment workflows align with applicable security standards, corporate policies, and regulatory requirements.
Incident Handling: Contribute to security incident investigations and response activities.
Training & Enablement: Educate and train internal stakeholders on cloud infrastructure and IT security best practices.

As a Senior DevOps Engineer, you will be responsible for building and maintaining scalable, reliable infrastructure and deployment pipelines with a strong emphasis on security integration throughout the software delivery lifecycle. You will work closely with development teams to improve development velocity while ensuring system reliability, security, and performance. This role is critical in bridging the gap between software development and operations, implementing DevSecOps best practices throughout our organization.

Main Responsibilities:
Infrastructure Management: Design, implement, and maintain cloud-based infrastructure using Infrastructure as Code principles
CI/CD Implementation: Build and optimize continuous integration and continuous deployment pipelines to enable rapid, reliable software delivery
Automation: Develop automation scripts and tools to streamline operations and eliminate manual processes
Containerization: Manage containerization strategies and orchestration using Docker and Kubernetes
Security Integration: Implement security scanning, testing, and validation throughout the CI/CD pipeline
Vulnerability Management: Conduct regular security assessments and remediate vulnerabilities in infrastructure and application code
Compliance Automation: Automate compliance checks and reporting to ensure adherence to security standards
Performance Optimization: Analyze and optimize system performance, scalability, and cost-efficiency
Documentation: Create and maintain thorough documentation for infrastructure, deployment processes, and operational procedures
Incident Response: Participate in on-call rotations and lead incident resolution with thorough post-mortem analysis

We are seeking a highly motivated and experienced SecOps Engineer to join our dynamic security team. In this role, you will be responsible for ensuring and enhancing the overall security posture of our cloud-native environment. Your responsibilities will include monitoring security systems, detecting and responding to incidents, and automating key security operations tasks. You will collaborate closely with other members of the security team, as well as development and operations teams, to ensure a secure and resilient infrastructure.
What am I going to do?
Security Tool Management: Configure and optimize security tools to ensure maximum visibility and effectiveness.
Security Monitoring: Continuously monitor logs and alerts from security platforms (e.g., SIEM, IDS/IPS, EDR, and cloud monitoring tools) to identify potential incidents.
Threat Detection & Analysis:Investigate security events and alerts to identify threats and vulnerabilities, prioritizing remediation efforts.
Incident Response:Support the incident response process, including containment, eradication, and recovery, under the guidance of the Incident Response Manager.
Vulnerability Management (Infrastructure): Conduct vulnerability scans and coordinate the remediation of findings across infrastructure components, including servers, networks, and cloud services.
Cloud Security Monitoring: Oversee the security posture of cloud environments (AWS, GCP) and respond to cloud-specific security incidents.
Security Automation: Automate recurring security operations tasks such as vulnerability scanning, incident triage, and configuration management.
Cross-Team Collaboration: Partner with development, operations, and security stakeholders to implement and maintain effective security controls.
Security Processes: Develop and refine processes to keep the team updated on evolving cybersecurity threats, technologies, and best practices.
Tooling & Innovation: Research and integrate new security tools and technologies to enhance our overall security capabilities.

Join our DeviantArt team as a Senior DevOps Engineer and play a pivotal role in maintaining and architecting a robust infrastructure that powers one of the largest online art communities. You'll be at the forefront of ensuring our platform's high availability, performance, and security, handling over 1.5 billion monthly page views.
The DeviantArt DevOps Team is a very small remote team that performs all tasks normally inclusive of SRE/DevOps/Infrastructure Engineers, with a bit of networking, security, and database administration mixed in. We are responsible for the day-to-day management and implementation of large-scale, mission-critical production systems that run on a public cloud.
This role requires wearing a lot of hats, and is equal parts fun and challenging. In this role, you will:
Architect and maintain a highly available infrastructure with a focus on proactive and reactive DDOS mitigation, autoscaling, self-healing, site performance, and cost optimization
Participate in a 24/7 on-call rotation, responding swiftly to outages or performance issues, and focus on less urgent alerts during normal work hours
Maintain and develop a developer environment and CI/CD pipelines in parity with production systems, for seamless testing and release of changes
Automate infrastructure provisioning and management using configuration management tools, complete with tests and documentation
Optimize and support sharded MySQL databases for efficient and reliable data handling amidst growing data reads and writes
Regularly update system components to avoid security issues and ensure up-to-date technology
We take our work seriously, but we dont take ourselves too seriously! We enjoy designing and building systems using open source tools and industry standards, and are in the fortunate position to be able to make decisions as a team about adopting newer technologies, and redesigning our infrastructure when appropriate.
This role is on a fully remote and distributed team, and asynchronous communication within and across teams is crucial. To be successful in this role, a candidate will need to work flexibly, balancing server and service issues, needs from development teams, security needs, and shifting priorities in our own tasks in managing our infrastructure.

we are on a mission to reverse the adversary advantage by empowering defenders with ingenuity and technology to end cyber attacks.
We have the technology, and now we are looking to expand our talent! - Come and talk to us about joining a market leader and a diverse team of passionate people who win as one, ensuring a customer-first approach is core to everything we do and never giving up on reversing the adversary advantage.
we are looking for passionate and talented individuals with a strong background in cloud-based applications and infrastructure to join our team and help shape the future of cybersecurity.
In this position you will:
Design, implement, and maintain robust security measures across our cloud environments, protecting our services and data against evolving threats.
Collaborate with software development and DevOps teams to secure our companys products, CI/CD pipelines, and production environments.
Become an integral part of an autonomous, cross-functional agile team.
Partner with engineers, product owners, and designers to tackle complex cybersecurity challenges.
Engage with a team of experienced engineers in a fast-paced CI/CD environment using cutting-edge technologies.
Take ownership of projects from conception through development, quality assurance, and deployment.
Work in a dynamic environment that supports personal and professional growth.

Required Principal DevOps Engineer (Cortex Cloud)
Who We Are:
We take our mission of protecting the digital way of life seriously. We are relentless in protecting our customers and we believe that the unique ideas of every member of our team contributes to our collective success. Our values were crowdsourced by employees and are brought to life through each of us everyday - from disruptive innovation and collaboration, to execution. From showing up for each other with integrity to creating an environment where we all feel included.
As a member of our team, you will be shaping the future of cybersecurity. We work fast, value ongoing learning, and we respect each employee as a unique individual. Knowing we all have different needs, our development and personal wellbeing programs are designed to give you choice in how you are supported. This includes our FLEXBenefits wellbeing spending account with over 1,000 eligible items selected by employees, our mental and financial health resources, and our personalized learning opportunities - just to name a few!
Your Career:
As a Principal DevOps Engineer in our Platform Engineering team, you will lead the design and implementation of cutting-edge CI/CD pipelines and cloud architecture that powers our development environment. You'll drive initiatives to enhance developer productivity through automation, tooling, and infrastructure improvements, working with a modern tech stack including Kubernetes, Python, cloud-native and high-scale technologies.
Your Impact
Architect and implement scalable, resilient CI/CD pipelines and cloud infrastructure that supports our engineering organization's evolving needs
Design and develop internal developer tools and platforms that significantly improve developer experience and productivity
Drive the evolution of our Kubernetes-based deployment infrastructure in Google Cloud Platform, ensuring security, reliability and performance
Optimize and scale our CI/CD infrastructure including Jenkins, GitLab, TeamCity, and artifact management systems
Mentor and guide other engineers on DevOps best practices, infrastructure design, and implementation strategies
Drive adoption of infrastructure-as-code, automated testing, and deployment methodologies
Collaborate with development teams to understand their needs and implement solutions that accelerate their workflow
Establish standards and best practices for infrastructure reliability, observability, and performance.

We are looking for a Senior DevOps Engineer to play a critical role in maintaining and evolving our highly available, high-traffic platform. In this role, you will ensure our systems are robust, scalable, and efficient - capable of seamlessly handling significant traffic spikes while meeting current and future business challenges. Your expertise in cloud infrastructure, container orchestration, automation, monitoring, and performance optimization will be essential.
As a Senior DevOps Engineer, you will be an integral part of our team responsible for managing production and development environments, designing CI/CD pipelines, and enforcing best practices in reliability, security, and scalability.
Responsibilities:
Design and build efficient, resilient cloud architectures using EKS and associated AWS services to address evolving business needs.
Develop, manage, and maintain production, staging, and development environments that are resilient, secure, and scalable while improving service-level agreements (SLAs) and performance.
Manage, monitor, and scale our distributed, containerized applications to ensure high availability and optimal performance.
Work closely with engineering and R&D teams to translate product requirements into scalable, secure technical solutions.
Mentor team members and foster an environment of continuous learning and technical excellence.
Establish, manage, and optimize CI/CD pipelines using tools such as Jenkins, GitHub Actions, Helm charts, Terraform and Crossplan.
Implement automation strategies to streamline deployments and infrastructure management, ensuring rapid yet reliable release cycles.
Implement robust monitoring and logging solutions (e.g., Prometheus, Grafana, CloudWatch, Datadog) to proactively identify and address performance bottlenecks.
Lead incident response efforts, conduct root-cause analysis, and drive long-term solutions to prevent recurring issues.

Were looking for a Senior DevOps Engineer to join our newly formed Foundations Teama small, high-impact group responsible for the infrastructure, tools, and shared services that power our entire R&D organization.
In this role, youll design, build, and evolve internal platform infrastructure, CI/CD systems, and developer enablement tooling. Your mission is to empower developers across the company to work autonomously, by creating self-service tools, automation, and clear standards that reduce friction and increase reliability.
Youll collaborate closely with engineers across disciplines and partner with the Foundations Team Lead to shape DevOps practices that scale. This is a hands-on role for someone who thrives in high-velocity, mission-critical environments and is passionate about building tools that make developers faster, more productive, and confident in running their own services.
What Youll Do
Design and maintain scalable, developer-friendly CI/CD pipelines and deployment workflows.
Build self-service tooling and automation that enables teams to manage deployments, environments, secrets, and observability independently
Be responsible for cloud infrastructure and operations foundations
Implement and promote best practices for monitoring, logging, and alerting across services.
Operate and optimize Kubernetes-based production environments, ensuring performance, security, and stability.
Manage infrastructure using Infrastructure as Code (IaC) and ensure repeatability and traceability through tools like Terraform.
Collaborate with R&D teams to support onboarding to internal tooling and promote a culture of enablement over dependency.
Monitor cloud cost, ensuring our cloud operates efficiently.

we are on a mission to reverse the adversary advantage by empowering defenders with ingenuity and technology to end cyber attacks.
We have the technology, and now we are looking to expand our talent! - Come and talk to us about joining a market leader and a diverse team of passionate people who win as one, ensuring a customer-first approach is core to everything we do and never giving up on reversing the adversary advantage.
We're looking for a sharp and experienced Mac Internals Developer to join our Advanced Technologies team and build a next-gen efficient, flexible and modular endpoint protection agent. You will work with other developers and are expected to have vast experience with Mac Internals, security oriented development (e.g. API Hooking, Code Injection).
As a company team member, you will harness your skills to help millions of individuals and organizations fend off any malicious activity - practically defend the world from evil : )
Responsibilities:
Lead the design, development, and optimization of MacOS internals and system components.
Architect solutions for complex system-level challenges, ensuring robustness and scalability.
Collaborate with cross-functional teams to deliver high-quality software solutions.
Mentor junior developers, providing guidance on best practices in system-level programming.
Conduct code reviews and ensure adherence to industry standards and security protocols.
Stay current with the latest MacOS developments and contribute to the technical direction of projects.

Required Senior Infrastructure Engineer
We are on a mission to solve healthcare affordability. Our products improve both patient affordability and access and cash flow & administrative complexity for medical providers. We are trusted by a rapidly growing number of hospital systems, hospitals, and physician groups and are backed by leading venture capital investors.
We're looking for an engineer who will play a pivotal role in designing, optimizing, and maintaining our internal developer tooling and infrastructure enabling our development team to work smoothly.
What you will do:
Collaborate closely with engineers to improve developer experience and streamline internal tooling.
Design, develop, and maintain common libraries and services to enhance engineering workflows.
Lead observability, automation, and reliability efforts across build, test, and deployment processes.
Work with Infrastructure as Code (Terraform, Pulumi) to automate and manage cloud environments.
Advocate for best practices in software development, testing, and deployment.
Evaluate and introduce new technologies to improve efficiency, scalability, and security.
Collaborate with cross-functional teams to reduce development friction and optimize system performance.