לוח משרות דרושים DevSecOps Team Lead

As an IR & SecOps Engineer Team Lead, you will lead the response process regarding cybersecurity threats facing the company. You will help further develop the Incident Response program that protects our company today and into the future. We are looking for an experienced, highly motivated leader who embraces the opportunity to influence and increase awareness of security across the organization.
As a IR & SecOps Team Lead at our company you will...
Plan, design, build, and execute our companys security engineering operations
Mentor and provide technical leadership to other members of the security team
Identify emerging cybersecurity threats, misconfigurations, and vulnerabilities by conducting continuous monitoring and log analysis related to our company Cloud
Perform incident triage by determining scope, urgency, and potential impact, and identify specific vulnerabilities while recommending actions for expeditious remediation
Partner with the engineering teams in the company to drive the security mission across the organization
Provide on-call security support as needed.

Realize your potential by joining the leading performance-driven advertising company!
The ideal candidate will bridge high-level security governance with hands-on, automated security implementation across the Software Development Life Cycle (SDLC).
This individual will be a critical enabler, empowering teams to move swiftly and deliver exceptional value to our clients, all while upholding the required security standards. A proven track record in successfully balancing rapid innovation with robust security practices is essential for this role.
How youll make an impact:
As the DevSecOps Leader / Program Manager, you will be responsible for creating a secure-by-design culture and leading the operational implementation of our security strategy. You will:
Build the Secure SDLC (SSDLC) Strategy: Develop, own, and execute the companys comprehensive DevSecOps strategy, focusing on automation to manage security at scale from code check-in to production deployment.
Lead Key Security Engineering Initiatives: Lead and manage security engineering programs, including:
Maturing the security tools stack (e.g., implementing WAF, and automating SCA/SAST tools).
Owning the bug bounty and responsible disclosure programs triage and remediation tracking.
Enhancing the Identity and Access Management (IAM) framework through concepts like Just-In-Time (JIT) and Zero Trust principles.
Operationalize CVE Tracking and Remediation: Design and implement a scalable system for discovering, tracking, and prioritizing Common Vulnerabilities and Exposures (CVEs) in third-party and custom code. Drive the engineering teams to achieve security risk remediation goals by providing clear, actionable data and automated patching mechanisms.
Measure & Drive Improvement: Develop and maintain key DevSecOps metrics (e.g., Mean Time To Detect/Remediate MTTD/MTTR, percentage of code coverage by SAST/SCA tools) to measure the effectiveness of automated controls and provide a data-driven picture of the application security posture.
Embed Security Engineering: Spearhead R&D DevSecOps initiatives, partnering directly with engineering teams to select, deploy, and maintain security tools, establishing security gates and best practices throughout the product development lifecycle.

We are looking for a hands-on DevOps Team Lead to take ownership of our infrastructure, DevOps practices, and automation pipelines.

You will be the technical and operational lead for a small but growing DevOps team, driving reliability, scalability, and security across our cloud environments.

In this role, you will split your time between leading and mentoring the team, designing and evolving infrastructure, and implementing solutions.

What Youll Do

Lead, mentor, and grow the DevOps team.
Define and enforce DevOps best practices across infrastructure, CI/CD, and security.
Manage the SeaPod Lab environment for developer and test usage.
Operate and evolve the SeaPod Server Linux infrastructure, deployed at scale worldwide, handling complex connectivity and security.
Maintain consistent baselines, update tools, and ensure fleet-wide monitoring and support.
Design, manage, and evolve AWS infrastructure (VPC, IAM, networking, RDS, EKS, etc.).
Operate and upgrade Kubernetes/EKS clusters, manage Helm charts, operators, and custom resources.
Define namespace policies, quotas, and resource allocations.
Drive security, compliance, and cost optimization.
Maintain and enhance GitLab CI pipelines for multiple workloads (Lambda, EKS, EC2, etc.).
Integrate testing, linting, and vulnerability scans into CI/CD workflows.
Build reusable pipeline components for microservices.
Own monitoring and alerting strategies (Grafana, CloudWatch, Coralogix, Prometheus).
Operate and tune PostgreSQL (RDS, Aurora) and manage backups/restores.