Principal Cloud DevSecOps Engineer

The Regeneron Genetics Center (RGC) IT team is looking for a passionate Principal Cloud DevSecOps Engineer with strong technical ability, communication, and collaboration skills. As the Principal Cloud DevSecOps Engineer, you will be responsible for the design and implementation of cloud infrastructure, automation, security controls, and compliance processes on AWS, supporting data, HPC, AI, and microservice platforms used by research scientists and bioinformaticians. You will work hands-on to build and implement cloud DevSecOps solutions, embed security into system design, and provide technical support and guidance to end users and internal teams. You will also provide technical mentorship for Lead and Senior DevSecOps engineers and coordinate with InfoSec, Privacy, and internal IT teams to ensure security, scalability, and reliability of the RGC cloud platform.

In this role, a typical day might include the following:

• Design and implement infrastructure-as-code, automation scripts, and CI/CD pipelines supporting data, HPC, AI, and microservice platforms on AWS

• Embed security controls into system design and implementation — including IAM policies, network segmentation, secrets management, and compliance validation pipelines

• Design and implement tools to automate operational processes across RGC’s cloud and systems engineering platforms

• Support all audit related activities including providing evidence and remediation of findings for RGC’s cloud platform

• Develop and implement continuous delivery systems and CI/CD methodologies for RGC’s systems engineering platforms using both AWS services and GitHub Actions, ARC self-hosted runners on EKS, and SAST/DAST integration.

• Recommend and deploy monitoring, metrics, and logging systems on RGC’s cloud engineering platforms

• Identify and implement opportunities to build systems that are highly available, scalable, and self-healing

• Develop SOPs and configure cloud services to support compliance validation

• Provide technical support, training, and documentation to end users and research teams using RGC’s data, HPC, AI, and microservice platforms

• Serve as a technical point of contact for user-facing issues related to cloud platform, DevOps pipelines, security services, and solving problems in collaboration with internal IT teams

• Stay on top of the latest advances in cloud platforms and related security & compliance controls

• Provide technical guidance and mentorship for Lead and Senior DevSecOps engineers

• Interact with InfoSec and Privacy teams to define and iterate on security requirements, and implement them across the platform

This job might be for you if:

• You have an eye for detail and pride yourself on the quality of your work. Operational excellence and secure-by-design thinking matter more than just finishing the tasks.

• You thrive in a fast-paced environment working across data, HPC, AI, and microservice platforms, and enjoy being a technical resource for the teams that depend on them.

• You work on current problems while thinking of future solutions, and take satisfaction in both building the right thing and supporting the people who use it.

To be considered for the Principal Cloud DevSecOps Engineer, you must have:

• Bachelor's Degree in Computer Science, or related field.

• 8+ years of in-depth AWS services experience and relevant security certifications.

• Hands-on experience designing and implementing cloud infrastructure automation, CI/CD pipelines, infrastructure-as-code, and security controls.

• Solid understanding of cloud security posture including IAM, network segmentation, secrets management, compliance validation, and security-by-design principles.

• Experience supporting data, HPC, AI, or microservice platforms in a technical or user-facing capacity. Knowledge of core AWS services EC2, EBS, S3, ELB, RDS, EKS, and IAM. Tangible experience with Linux administration and automation of security controls and compliance validation.

• Experience with monitoring tools like Splunk, Grafana, Prometheus. AWS and other related certifications are a plus.

Level commensurate on experience and qualifications. Regeneron is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability status, protected veteran status, or any other characteristic protected by law.

Does this sound like you? Apply now to take your first step towards living the Regeneron Way! We are committed to building a workplace with an inclusive culture. Regeneron is an equal opportunity employer and all  qualified applicants will receive consideration for employment without regard to race, color, religion or belief (or lack thereof), sex, sexual orientation, gender identity or expression, gender reassignment, marital or civil partnership status, civil status, pregnancy or parental status, age, disability, nationality, citizenship status, ethnic or national origin, membership of the Traveler community, familial status, genetic information, military or veteran status, or any other characteristic protected under applicable law. Where required, we will provide reasonable accommodation to applicants with known disabilities or chronic illnesses during the recruitment process, unless such accommodation would impose undue hardship.

Where necessary, we disclose salary ranges for roles in all countries in which we operate.  The final offer will be determined within the relevant range based on the country of employment, specific role level, and your skills and experience. In some countries, collective bargaining agreements (CBAs) may apply and influence certain elements of pay or benefits.  Regeneron offers a competitive and comprehensive total rewards package which may include, depending on country and role: annual bonuses or other incentive plans, equity awards, pension or retirement benefits, 401(k) company match, health and wellness programs, fitness centers, insurance benefits (e.g. medical, dental, vision, life and disability), paid time off, and family support benefits. For additional information about Regeneron benefits in the U.S., please visit https://careers.regeneron.com/en/working-at-regeneron/total-rewards/. For other locations, additional information will be provided during the recruitment process.  If you have any questions, please speak with your recruiter. 

Please be advised that at Regeneron, we believe we do our best work when we are together. For that reason, many roles are required to be performed on‑site. Please speak with your recruiter and hiring manager for more information about on‑site expectations for your role and location.

As part of the recruitment process, certain background checks may be conducted in accordance with the laws of the country where the position is based. The purpose of such checks is to verify certain information prior to the commencement of employment such as identity, right to work and educational qualifications.

For jobs in Canada: this posting is for an existing position.

Salary Range (annually)