DevSecOps Engineer

Planitar Inc.

DevSecOps Engineer at Planitar leading the integration of security into software development and cloud environments. Focused on automating security processes and collaborating with engineering teams.

Posted 4/17/2026full-timeWaterloo • 🇨🇦 CanadaMid-LevelSenior💰 CA$125,000 - CA$145,000 per yearWebsite

Tech Stack

Tools & technologies

AWSCloudDockerFirewallsKubernetesPythonTerraform

About the role

Key responsibilities & impact

Secure CI/CD Pipelines: Design, build, and maintain automated security testing within continuous integration and deployment pipelines (incorporating SAST, DAST, and SCA tools).
Cloud Security Posture: Implement and monitor security controls across our AWS cloud environment, ensuring compliance with industry best practices and frameworks.
Infrastructure as Code (IaC) Security: Enforce "Security as Code" by implementing automated scanning for Terraform templates to catch misconfigurations before deployment.
Vulnerability Management: Triage, track, and partner with engineering teams to remediate security vulnerabilities across infrastructure, containers, and applications.
Threat Modeling & Architecture: Participate in system design reviews and threat modeling sessions to identify potential attack vectors in new features and infrastructure.
Incident Response: Assist in cloud and application security incident response, including forensic log analysis and mitigation strategy development.
Advocacy & Training: Evangelize secure coding practices and provide guidance to developers on how to build highly secure, resilient systems.

Requirements

What you’ll need

3+ years of hands-on experience in DevSecOps, Cloud Security, or a DevOps role with a heavy security focus.
Strong proficiency in securing AWS environments (e.g., deep knowledge of IAM, VPCs, GuardDuty, Security Hub, AWS WAF, KMS).
Strong coding/scripting skills in Python, Bash to automate security workflows and integrate APIs.
Hands-on experience integrating security scanners (e.g., Snyk, SonarQube, Trivy, Checkmarx) into modern pipelines (e.g., GitHub Actions, GitLab CI).
Proficiency writing and reviewing IaC (Terraform) and utilizing IaC security scanners (e.g., tfsec, Checkov).
Solid understanding of Docker and Kubernetes security concepts, including image scanning, RBAC, and network policies.
Practical knowledge of network security fundamentals, including firewalls, zero-trust architecture, VPNs, and TLS/SSL.
Relevant certifications such as AWS Certified Security – Specialty, CKA/CKS (Certified Kubernetes Security Specialist), or OSCP are a plus.
Experience with regulatory compliance frameworks (e.g., SOC2, ISO 27001, HIPAA) is a plus.
Familiarity with SIEM/SOAR tools and centralized logging strategies.

Benefits

Comp & perks

🌐 Worldwide ❌ Jobs You've Hidden ⭐️ Saved Jobs ✅ Applied Jobs ✉️ Email Alerts 👤 Account Planitar Inc. Website LinkedIn All Job Openings 51 - 200 employees Founded 2012 🏠 Real Estate 🔧 Hardware ☁️ SaaS 💰 Angel on 2015-01 Real Estate
Hardware
SaaS Planitar Inc. is a technology company that develops the iGUIDE platform and PLANIX capture hardware to create accurate, standards-based floor plans, CAD deliverables and immersive 3D virtual tours from a single scan. It serves real estate agents, photographers, architects, insurance/restoration teams and facility managers by providing fast capture hardware, automated measurement and exportable file formats (PDF, DWG, RVT, ESX) plus optional hosting and integrations with industry tools like Xactimate and MLS systems. Planitar combines hardware, software and service offerings (including trained iGUIDE Pros) to streamline property documentation and visualization workflows. DevSecOps Engineer 🔥 18 minutes ago 🏢🏡 Waterloo – Hybrid 💵 $125k - $145k / year ⏰ Full Time 🟡 Mid-level 🟠 Senior ⛑ DevOps & Site Reliability Engineer (SRE) AWS Cloud Docker Firewalls Kubernetes Python Terraform Apply Now Find Hiring Managers Customize resume for this job Report problem ☆ Save ☑️ Mark as applied ❌ Hide 📋 Description
Secure CI/CD Pipelines: Design, build, and maintain automated security testing within continuous integration and deployment pipelines (incorporating SAST, DAST, and SCA tools).
Cloud Security Posture: Implement and monitor security controls across our AWS cloud environment, ensuring compliance with industry best practices and frameworks.
Infrastructure as Code (IaC) Security: Enforce "Security as Code" by implementing automated scanning for Terraform templates to catch misconfigurations before deployment.
Vulnerability Management: Triage, track, and partner with engineering teams to remediate security vulnerabilities across infrastructure, containers, and applications.
Threat Modeling & Architecture: Participate in system design reviews and threat modeling sessions to identify potential attack vectors in new features and infrastructure.
Incident Response: Assist in cloud and application security incident response, including forensic log analysis and mitigation strategy development.
Advocacy & Training: Evangelize secure coding practices and provide guidance to developers on how to build highly secure, resilient systems. 🎯 Requirements
3+ years of hands-on experience in DevSecOps, Cloud Security, or a DevOps role with a heavy security focus.
Strong proficiency in securing AWS environments (e.g., deep knowledge of IAM, VPCs, GuardDuty, Security Hub, AWS WAF, KMS).
Strong coding/scripting skills in Python, Bash to automate security workflows and integrate APIs.
Hands-on experience integrating security scanners (e.g., Snyk, SonarQube, Trivy, Checkmarx) into modern pipelines (e.g., GitHub Actions, GitLab CI).
Proficiency writing and reviewing IaC (Terraform) and utilizing IaC security scanners (e.g., tfsec, Checkov).
Solid understanding of Docker and Kubernetes security concepts, including image scanning, RBAC, and network policies.
Practical knowledge of network security fundamentals, including firewalls, zero-trust architecture, VPNs, and TLS/SSL.
Relevant certifications such as AWS Certified Security – Specialty, CKA/CKS (Certified Kubernetes Security Specialist), or OSCP are a plus.
Experience with regulatory compliance frameworks (e.g., SOC2, ISO 27001, HIPAA) is a plus.
Familiarity with SIEM/SOAR tools and centralized logging strategies. Apply Now 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score 🌐 Worldwide Built by Lior Neu-ner. I'd love to hear your feedback — Get in touch via DM or support@remoterocketship.com Search Search Jobs by country Search jobs by city Search jobs by job title Search entry-level jobs Search junior-level jobs Search senior-level jobs Search jobs by tech stack Search jobs by contract type Search remote internships Search remote part-time jobs Remote jobs Anywhere in the World Companies Hiring Anywhere in the World Companies Hiring Sales People Anywhere in the World Companies Hiring Software Engineers Anywhere in the World Resources Advice Tips for finding remote jobs Interview questions and answers Resume examples Cover letter examples Post a job Affiliates Privacy policy Terms of service Job board SEO course AI Apply Copilot OpenClaw job finder Jobs by Country Remote jobs anywhere in the world (Worldwide remote jobs) Remote jobs United States Remote jobs Australia Remote jobs Brazil Remote jobs Canada Remote jobs France Remote jobs Ireland Remote jobs Germany Remote jobs Netherlands Remote jobs Spain Remote jobs UK Popular Jobs Remote data analyst jobs Remote customer support jobs Remote executive assistant jobs Remote marketing jobs Remote product designer jobs Remote product manager jobs Remote project manager jobs Remote recruiter jobs Remote sales jobs Remote software engineer jobs Jobs by Type Remote full-time jobs Remote part-time jobs Remote contract jobs Remote internship jobs Remote entry-level jobs Remote jobs with no experience required Remote junior jobs (1-3 years of experience) Digital nomad jobs Remote jobs with no degree required Freelance remote jobs Temporary remote jobs Remote jobs hiring now Stay at home mom jobs

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

DevSecOpsCloud SecurityAWSPythonBashTerraformDockerKubernetesnetwork securitysecurity scanning

Soft Skills

incident responseadvocacytrainingcollaborationcommunication

Certifications

AWS Certified Security – SpecialtyCKACKSOSCP