DevSecOps Lead - DevSecOps - Parsippany, NJ

Posted 17 Days Ago
Be an Early Applicant
2 Locations
In-Office or Remote
Senior level
Agency • Information Technology
The Role
Lead design and implementation of DevSecOps across a global platform: embed security into SDLC, automate security testing in CI/CD, perform risk assessments, ensure compliance (GDPR, ISO27001), integrate tools (SAST/DAST/SIEM/WAF), monitor/respond to incidents, train teams, and document processes.
Summary Generated by Built In

Job Summary:

We are seeking a highly skilled and experienced DevSecOps Lead to spearhead the integration of security into our DevOps processes for a global digital platform. The ideal candidate will have a deep understanding of both development and security best practices, and will play a crucial role in ensuring that our platform is secure, scalable, and compliant with global standards. This role involves close collaboration with development, operations, and security teams to embed security throughout the software development lifecycle.

Key Responsibilities:

DevSecOps Strategy & Implementation: Lead the design, implementation, and management of DevSecOps practices across the global digital platform, ensuring that security is integrated into every phase of the software development lifecycle.

Security Automation: Develop and implement security automation tools and processes to streamline security testing, monitoring, and compliance checks within CI/CD pipelines.

Risk Assessment & Mitigation: Conduct regular security risk assessments, vulnerability scanning, and threat modeling to identify and mitigate potential security risks across the platform.

Compliance & Governance: Ensure that the platform complies with global security standards, regulations, and best practices, such as GDPR, ISO 27001, and others relevant to the regions of operation.

Collaboration & Training: Work closely with development, operations, and security teams to foster a culture of security awareness and ensure that all team members are trained on secure coding and DevSecOps practices.

Monitoring & Incident Response: Implement continuous monitoring tools and processes to detect, respond to, and recover from security incidents, ensuring minimal disruption to the platform.

Tool Integration: Integrate security tools and solutions (e.g., SAST, DAST, SIEM, WAF) into the DevOps pipeline, ensuring that security is an integral part of the development and deployment process.

Performance Optimization: Optimize the DevSecOps processes to enhance efficiency without compromising security, ensuring that the platform remains fast, reliable, and secure.

Documentation & Reporting: Create and maintain comprehensive documentation for DevSecOps processes, tools, and incident response plans. Regularly report on security metrics and improvements to senior management.

Innovation & Improvement: Stay updated on the latest DevSecOps trends, tools, and best practices, continuously improving the security posture of the platform.

Qualifications:

Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. A Master’s degree is a plus.

Minimum of 7-10 years of experience in IT, with at least 3-5 years in a DevSecOps or similar security-focused role.

Strong knowledge of DevSecOps practices, including secure coding, CI/CD pipelines, automation tools, and cloud security. Proficiency with tools such as Jenkins, Docker, Kubernetes, Terraform, Ansible, etc.

Expertise in security best practices, including vulnerability management, threat modeling, and incident response. Familiarity with security frameworks and standards (e.g., NIST, OWASP, CIS).

Experience with securing cloud environments (AWS, Azure, Google Cloud) and integrating cloud security tools and practices.

Strong analytical and problem-solving skills, with the ability to assess complex security challenges and implement effective solutions.

Excellent communication and collaboration skills, with the ability to work effectively with cross-functional teams and explain security concepts to non-technical stakeholders.

Skills Required

  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field
  • Master's degree
  • 7-10 years IT experience with at least 3-5 years in DevSecOps or security-focused role
  • Strong knowledge of DevSecOps practices, secure coding, CI/CD pipelines, and automation
  • Proficiency with Jenkins, Docker, Kubernetes, Terraform, Ansible (and similar CI/CD/infrastructure tools)
  • Expertise in vulnerability management, threat modeling, and incident response
  • Familiarity with security frameworks and standards (NIST, OWASP, CIS, GDPR, ISO 27001)
  • Experience securing cloud environments (AWS, Azure, Google Cloud)
  • Strong analytical and problem-solving skills
  • Excellent communication and collaboration skills to work with cross-functional teams
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: London
5,017 Employees
Year Founded: 2007

What We Do

Photon.com has emerged as one of the world’s largest and fastest-growing Digital Agencies. We work with 40% of the Fortune 100 on their Digital initiatives and are known for our ability to integrate Strategy Consulting, Creative Design, and Technology at scale. Please visit www.photon.com to learn more about us, how we work, and our customer case studies. Digital Transformation Starts Here.

Similar Jobs

Wipfli Logo Wipfli

Audit Manager, Technology Industry

Cloud • Fintech • Software • Business Intelligence • Consulting • Financial Services
Remote or Hybrid
United States
3000 Employees
97K-145K Annually

North Texas Custom Roofing and Construction Management Logo North Texas Custom Roofing and Construction Management

Accounting Manager

Consumer Web • Real Estate • Sharing Economy • Virtual Reality • Consulting • Manufacturing
Remote
United States
300 Employees
110K-150K Annually

Cox Enterprises Logo Cox Enterprises

Head of Alliances and Partnerships (RapidScale)

Artificial Intelligence • Automotive • Greentech • Information Technology • Machine Learning • Software • Cybersecurity
Remote or Hybrid
NJ, USA
50000 Employees
180K-299K Annually

Cox Enterprises Logo Cox Enterprises

Digital Marketing / Communications Manager

Artificial Intelligence • Automotive • Greentech • Information Technology • Machine Learning • Software • Cybersecurity
Remote or Hybrid
United States
50000 Employees
92K-154K Annually

Similar Companies Hiring

Scrunch  Thumbnail
Artificial Intelligence • Information Technology • Marketing Tech • Software • SEO
Salt Lake City, Utah
Standard Template Labs Thumbnail
Artificial Intelligence • Information Technology • Software
New York, NY
25 Employees
Golden Pet Brands Thumbnail
Digital Media • eCommerce • Information Technology • Marketing Tech • Pet • Retail • Social Media
El Segundo, California
178 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account