Manage and maintain edge and bot protection (e.g., WAF, CDN, DDoS mitigation).
Perform security-focused infrastructure reviews for new product releases and architectural changes.
Implement and maintain monitoring and alerting tools to detect cloud and container-related vulnerabilities and misconfigurations.
Collaborate with DevOps and Engineering teams to embed security into CI/CD pipelines and deployment processes without slowing down delivery.
Partner with Application Security and Engineering to implement security controls on opportunities identified during Threat Modeling.
Lead initiatives around infrastructure-as-code (IaC) security and runtime protection to automate security controls and hardening.
Assist with threat modeling, risk assessments, and provide security guidance during the development lifecycle.
Collaborate with incident response teams, offering expert advice on cloud-related security issues to help resolve incidents quickly.
Develop tooling or automation to support proactive remediation and continuous security validation.
Track and report DevSecOps KPIs, such as mean time to remediate, security control coverage, and vulnerability trends.

Requirements

5+ years in DevSecOps, Security Engineering, or similar roles.
Expertise with cloud platforms (GCP, AWS, Azure) and container orchestration (e.g., Kubernetes, ECS).
Experience with cloud and container security tooling.
Strong understanding of WAFs, bot mitigation, API gateways, and CDN security features.
Proven experience performing secure design and architecture reviews.
Proficiency with IaC tools (Terraform, OpenTofu, Helm, etc.) and integrating security scanners into pipelines.

Benefits

Company-subsidized medical, dental, & vision plans
401(k) plan with company match
Annual bonus
Flexible PTO to encourage a healthy work/life balance (2 weeks STRONGLY encouraged!)
Generous paid leave programs, including 16-week paid parental leave and disability benefits
Workplace flexibility and modern work schedules focused on getting the job done, not hours clocked
Company-wide in-person events and team outings
Lifestyle enhancement program
Company equipment provided (Windows & Mac options)
Annual performance reviews with opportunities for growth and career development

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

DevSecOpsSecurity Engineeringcloud securitycontainer securityinfrastructure-as-codethreat modelingrisk assessmentssecurity controlsmonitoring toolsalerting tools

Soft Skills

collaborationleadershipcommunicationproblem-solvingadvisory skills