DevSecOps Engineer
MetalBear
full-time
Posted on:
Location Type: Remote
Location: New York • United States
Visit company websiteExplore more
About the role
- Maintain and improve our IaC setup, ensuring reliability, scalability, and security.
- Oversee security architecture, implementing best practices for cloud security and compliance.
- Lead certification efforts, including ISO 27001, SOC 2, and other relevant frameworks.
- Continuously assess and enhance security posture across infrastructure and applications.
- Design, implement, and maintain CI/CD pipelines to streamline deployment and development workflows.
Requirements
- 5+ Years of direct or related experience
- Experience with Infrastructure as Code (Terraform, Pulumi, or similar tools)
- Strong knowledge of cloud platforms (AWS, GCP, Azure) and cloud security best practices
- Experience with security frameworks and certifications (ISO 27001, SOC 2, NIST, etc.)
- Hands-on experience managing CI/CD pipelines (GitHub Actions, GitLab CI, ArgoCD, etc.)
- Knowledge of containerization and orchestration (Docker, Kubernetes)
- Proficiency in scripting languages (Python, Bash, or similar)
- Understanding of security concepts, threat modeling, and vulnerability assessments
- Strong problem-solving skills and ability to work independently.
Benefits
- Competitive salary
- Meaningful stock options
- Remote-first and async-friendly environment
- High trust and low meetings
- Flexibility to do your best work
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Infrastructure as CodeTerraformPulumiAWSGCPAzureCI/CD pipelinesGitHub ActionsGitLab CIDocker
Soft Skills
problem-solvingindependence
Certifications
ISO 27001SOC 2NIST