
DevSecOps Engineer
American Society of Crime Laboratory Directors (ASCLD)
full-time
Posted on:
Location Type: Remote
Location: California • United States
Visit company websiteExplore more
Tech Stack
About the role
- Work alongside DevOps and engineering teams to ensure our platforms, repositories and CI/CD pipelines are secure by default while remaining easy to build, test, and deploy against
- Identify security risks through tools, audits, and monitoring, and drive them to resolution — whether that means changing a policy, updating infrastructure, or improving a pipeline
- Take ownership of the security posture across multiple AWS accounts and continuously improve it over time
- Design and maintain security guardrails around IAM, logging, monitoring, and encryption
- Manage repository-level security scanning (SAST, dependency scanning, secrets detection) using tools such as Aikido or similar, and ensure findings are actionable
- Partner with DevOps teams to secure Kubernetes clusters, with a strong focus on Rancher
- Improve security visibility through monitoring, logging, and reporting
- Automate security controls and validations using Infrastructure as Code and scripting
- Help document security standards, patterns, and operational runbooks
Requirements
- 5+ years of experience in DevOps, DevSecOps, or Cloud Security roles
- Strong hands-on experience securing AWS in production environments
- Experience working with multi-account AWS setups
- Experience with repository security scanning (SAST, dependency scanning, secrets detection)
- Experience support security and compliance initiatives (e.g., SOC 2, TX-RAMP, or similar)
- Solid understanding of IAM, network security, and secrets management
- 3+ years of experience working with and securing Kubernetes clusters
- Experience using Rancher for Kubernetes cluster management
- Hands-on experience securing CI/CD pipelines (GitLab CI, GitHub Actions, etc.)
- Experience using Infrastructure as Code tools such as Terraform / OpenTofu or CloudFormation
- Experience partnering with security teams or risk stakeholders.
Benefits
- DroneSense employs full time US citizens or naturalized citizens from a NATO country, who are current residents in one of the 50 contiguous United States. Though our positions are "remote" we do not work with offshore/near shore individuals or contractors to stay in compliance with our client's requirements.
- A valid LinkedIn profile with photo MUST be included to be considered.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
AWSKubernetesRancherSASTdependency scanningsecrets detectionInfrastructure as CodeTerraformOpenTofuCloudFormation
Soft Skills
ownershipcollaborationcommunicationproblem-solvingdocumentation