Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Vapi

Member of Technical Staff, DevSecOps

Vapi

Senior DevSecOps Lead responsible for securing enterprise voice AI applications at Vapi. Collaborating closely with InfoSec and engineering teams to harden infrastructures and maintain compliance.

Posted 6/9/2026full-timeSan Francisco • California • 🇺🇸 United StatesLead💰 $180,000 - $280,000 per yearWebsite

Tech Stack

Tools & technologies
AWSCloudKubernetesPostgresVoIP

About the role

Key responsibilities & impact
  • Make Vapi's security posture world-class for the enterprise — shift security left, catch regressions during code review and CI, and harden our multi-tenant infrastructure as we onboard the Fortune 500.
  • Build automation as a security primitive — including agentic systems that run penetration tests against staging ahead of every release, and that auto-remediate issues as they surface.
  • Own the compliance roadmap end-to-end alongside InfoSec, including Drata and the automations that keep us audit-ready as we expand into new regions and regulated industries.
  • Partner deeply with Engineering, InfoSec, and GRC — building guardrails developers actually use, not ad-hoc controls bolted on after the fact.
  • Be the authority Sales and GTM lean on — giving prospects and enterprise customers the confidence that Vapi's security posture matches the trust they're placing in us.

Requirements

What you’ll need
  • 5–10 years of engineering experience, with significant time in modern cloud-native SaaS — AWS, Kubernetes, Postgres, and ideally VoIP.
  • Strong understanding of security in a multi-tenant cloud environment serving regulated enterprise customers with many third-party integrations.
  • High proficiency writing and reviewing code — you can ship the fix, not just file the ticket.
  • Invested in shift-left security: catching regressions during code and test, not after production incidents.
  • Collaborative by default — you build guardrails with security, engineering, and GRC partners rather than operating as a lone wolf.
  • Hands-on by preference; comfortable as a senior IC or lead, not looking to step into pure management.
  • Direct experience securing CI/CD pipelines.
  • Background as a backend software engineer.
  • Experience with compliance frameworks (SOC 2, ISO 27001, HIPAA) and tools like Drata.
  • Familiarity with VoIP / telephony security and the failure modes of real-time systems.

Benefits

Comp & perks
  • Competitive compensation: includes a strong base salary and meaningful equity ownership.
  • Comprehensive health coverage: medical, dental, and vision plans.
  • Flexible time off: take-what-you-need vacation policy with an emphasis on rest and balance.
  • Daily meals: catered lunches and dinners provided for in-office days.
  • Lifestyle & wellness stipends: monthly allowances to support rent, transportation, food, fitness, and mental well-being.
  • Professional development: annual learning stipends for courses, conferences, and upskilling.
  • Team connection: regular offsites, team events, and opportunities to build in-person relationships.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
cloud-native SaaSAWSKubernetesPostgresCI/CD pipelinesbackend software engineeringshift-left securitypenetration testingauto-remediationcode review
Soft Skills
collaborativeauthority in securityinvested in security practicescomfortable as a senior ICleadershipcommunicationpartnershipproblem-solvingadaptabilityproactive
Certifications
SOC 2ISO 27001HIPAA