Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Crossmint

Senior DevSecOps Engineer

Crossmint

Senior DevSecOps Engineer securing AWS environments and CI/CD pipelines at Crossmint. Collaborating with teams to manage vulnerabilities, compliance, and application security.

Posted 6/12/2026full-timeMiami • Florida, New York • 🇺🇸 United StatesSenior💰 $160,000 - $180,000 per yearWebsite

Tech Stack

Tools & technologies
AWSCloudGoogle Cloud Platform

About the role

Key responsibilities & impact
  • Own security across our AWS environments (primary), with additional exposure to GCP and Vercel: IAM, Security Hub, CloudTrail, GuardDuty, KMS, and related controls.
  • Design, maintain, and monitor security controls across cloud infrastructure: logging pipelines, alerting thresholds, key management, and privileged access workflows.
  • Manage security-relevant access controls across cloud environments and internal systems, including service accounts, credential rotation, and periodic access reviews.
  • Provide security input to IT & Infrastructure on network segmentation, endpoint security baselines, and cross-system access policies, without owning those systems yourself.
  • Secure our CI/CD pipelines and GitHub Actions environments: secrets management, supply chain risk, and dependency vulnerability workflows.
  • Perform secure code reviews and provide hands-on application security support to engineering teams.
  • Review authentication flows, payment logic, and API security with human judgment, not just automated scanners.
  • Partner with engineers to remediate vulnerabilities and embed security practices into the development lifecycle.
  • Own vulnerability management end-to-end: identification, prioritization, remediation tracking, and verification.
  • Coordinate our external security review program with third-party audit and penetration testing firms.
  • Support incident response through internal triage and investigation, working alongside our external 24/7 response partners.
  • Support SOC 2 and other compliance efforts by collecting evidence, documenting controls, and maintaining audit-ready processes for engineering and security-related controls.
  • Contribute to DORA compliance initiatives where applicable.
  • Maintain clear, auditable documentation of security processes to support audit cycles and long-term knowledge transfer.

Requirements

What you’ll need
  • 4–8 years of experience as a security engineer, with a clear security-first background rather than a generalist infrastructure background.
  • 3+ years of hands-on experience securing AWS environments: IAM, Security Hub, CloudTrail, GuardDuty, and KMS.
  • Strong practical knowledge of CI/CD security: GitHub Actions, secrets scanning, and dependency management.
  • Experience with secure code review or core application security concepts (OWASP, auth flows, API security).
  • Experience working within at least one compliance framework, SOC 2 preferred, with ISO 27001 or similar acceptable.
  • Fluent communicator across technical teams — you can work productively with developers and IT engineers without needing to own their domains.
  • Self-directed and organized. You track your own work and do not drop threads.
  • Experience using AI-assisted tools such as Claude or GitHub Copilot for security automation or research.
  • Ability to work flexible hours if an incident arises.

Benefits

Comp & perks
  • Extensive access to leading AI tools and subscriptions, with AI actively encouraged and integrated into daily workflows.
  • We conduct two performance reviews annually. The first addresses performance ratings, bonuses, and promotions. The second encompasses these elements along with salary adjustments reflecting inflation and market conditions.
  • Stock options are part of every full-time offer.
  • Unlimited, flexible PTO.
  • Parental Leave program.
  • Flexible work schedule.
  • Company laptop and allowance for any necessary home equipment.
  • Daily stipend for commuting to the office and/or meals.
  • Three company-paid off-sites per year.
  • Health, dental, vision, life, short-term disability (STD), and long-term disability (LTD) insurances.
  • 401(k) Plan.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
AWSGCPVercelIAMSecurity HubCloudTrailGuardDutyKMSCI/CD securitysecure code review
Soft Skills
fluent communicatorself-directedorganized
Certifications
SOC 2ISO 27001