DevSecOps Engineer

Sorry, this job was removed Sorry, this job was removed at 02:54 p.m. (CST) on Thursday, Jan 30, 2025
Be an Early Applicant
Hiring Remotely in United States
Remote
145K-155K Annually
Software • Automation
The Role

Description

As a DevSecOps Engineer at Authorium, you'll play a vital role in building and maintaining our secure and scalable SaaS platform hosted on AWS by bridging the gap between development and security, implementing robust application security measures aligned with NIST 800-53, and engineering secure infrastructure. You'll work closely with developers, security experts, and other operations teams to ensure our platform's security, reliability, and performance.

  • Application Security:
    • Integrate security vulnerability scanning, SAST, and DAST tools into the CI/CD pipeline.
    • Manage vulnerability and code scanning tools to ensure adequate coverage and efficient vulnerability remediation.
    • Conduct security reviews of code, APIs, and infrastructure designs.
    • Partner with the engineering team to implement security measures and remediate any discovered vulnerabilities.
  • Security Infrastructure Engineering:
    • Design, build, and deploy secure infrastructure on AWS Commercial and AWS GovCloud using Infrastructure as Code (IaC) technologies like Terraform.
    • Oversee management of security controls within the AWS ecosystem, including IAM roles and policies, VPCs, security groups, and encryption.
    • Automate security tasks and configuration management.
    • Monitor and analyze security alerts to identify and respond to potential threats.
    • Collaborate with the DevOps team to integrate security considerations into CI/CD pipelines.
      • Defence in Depth
      • High-Availability/Disaster Recovery/Business Continuity
      • Drift Detection/Remediation
      • E2EE (end to end encryption)
      • Role-based access controls (RBAC)
      • Incident Response
      • Least Privilege
    • Familiarity with the following technologies: 
      • Linux
      • Kubernetes
      • Helm
      • CircleCI
      • Git
      • GitHub Actions
      • AWS tools and services: 
        • AWS Security Hub
        • Amazon GuardDuty
        • Amazon Inspector
        • Amazon CloudWatch
        • AWS CloudTrail
        • AWS WAF & Shield
        • AWS Key Management Service (KMS)
        • AWS Systems Manager Parameter Store
        • AWS Secrets Manager
        • AWS Lambda
        • AWS IAM
        • Amazon EC2
        • Amazon ECR
        • Amazon ECS
        • Amazon EKS
        • Amazon EFS
        • Amazon S3
        • Amazon RDS
  • General DevSecOps:
    • Collaborate with development and security teams to define and implement DevSecOps principles and best practices.
    • Manage and automate security testing procedures within the CI/CD pipeline.
    • Stay informed about new DevSecOps tools and technologies.
    • Communicate effectively with technical and non-technical stakeholders.
Requirements
  • Bachelor's degree in Information Security, Computer Science, or a related field or equivalent work experience.
  • Minimum of 2 years of experience in information security or a related field.
  • Working knowledge of FedRAMP/StateRAMP requirements and compliance frameworks.
  • Experience with continuous monitoring tools and techniques.
  • Strong analytical and problem-solving skills.
  • Excellent communication and interpersonal skills.
  • Ability to work independently and as part of a team.

Nice to Have:

  • Certification (e.g. CISSP, CISM, CISA, Ethical Hacking, AWS, etc.).
  • Knowledge of scripting languages (e.g., Python, Bash) is a plus.

Employees located within 30 miles of our hub cities—San Francisco, Sacramento, and (coming soon) Washington, D.C. —are required to work onsite from Tuesday to Thursday. Remote work is available on other days.

Benefits
  • Salary Range: $145,000-$155,000
  • Flexible PTO
  • 100% employer-funded medical, dental and vision insurance
  • 100% remote
  • $500 home office stipend
  • 401K with Profit Sharing Plan

The Company
San Francisco, California
54 Employees
On-site Workplace
Year Founded: 2014

What We Do

Authorium is the industry leader in Document Process Automation, providing a transformative enterprise solution for city, state, and federal government agencies with complex document-centric processes. Whether in Admin, Policy, HR, Budgeting, Contracts, Grants, or Procurements, Authorium accelerates time to result while ensuring compliance, insight, and oversight

Similar Jobs

VetsEZ Logo VetsEZ

DevSecOps Engineer (Remote Opportunity)

Artificial Intelligence • Cloud • Information Technology • Machine Learning
Remote
Tampa, FL, USA
144 Employees

American Express Global Business Travel Logo American Express Global Business Travel

DevSecOps Engineer

Fintech • Software • Travel • Business Intelligence • Consulting • App development • Big Data Analytics
Remote
United States
18000 Employees
70K-140K Annually

Boeing Logo Boeing

DevSecOps Developer (Virtual)

Aerospace • Information Technology • Cybersecurity • Defense • Manufacturing
Remote
United States
141000 Employees
81K-90K Annually

Leidos Logo Leidos

DevSecOps Engineer

Information Technology • Software
Remote
2 Locations
27104 Employees
85K-154K Annually

Similar Companies Hiring

Stepful Thumbnail
Software • Healthtech • Edtech • Artificial Intelligence
New York, New York
60 Employees
HERE Technologies Thumbnail
Software • Logistics • Internet of Things • Information Technology • Computer Vision • Automotive • Artificial Intelligence
Amsterdam, NL
6000 Employees
True Anomaly Thumbnail
Software • Machine Learning • Hardware • Defense • Artificial Intelligence • Aerospace
Colorado Springs, CO
131 Employees
By clicking Apply you agree to share your profile information with the hiring company.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account