DevOps Security Engineer - Remote Opportunity

About the Role

We are looking for a hands-on DevOps Security Engineer to join our team remotely. In this role, you will help secure our posture throughout the software delivery lifecycle — from the first line of code to production deployment and beyond. As a DevOps Security Engineer, you will work with a complex stack, shipping frequently across multiple services running on containerized, cloud-native infrastructure managed entirely as code. Your job is to ensure that every release is hardened before it reaches customers, and every pipeline enforces that standard automatically.

What You'll Do

• Conduct deep-dive vulnerability and security reviews of all software releases before they reach production.
• Own the pre-shipment security gate process: define pass/fail criteria, enforce them in CI/CD, and be the escalation point when a release is blocked on a security finding.
• Triage and classify vulnerabilities from SAST, DAST, SCA, and container scanning tools.
• Maintain and continuously improve a vulnerability management program with clear SLAs for remediation by severity.
• Own and continuously improve the automated security tooling integrated into our CI/CD pipelines.
• Build and maintain custom security automation using Python, Go, or Bash.
• Audit the full infrastructure-as-code (IaC) stack for misconfigurations and policy violations.
• Define and enforce cloud security policies across AWS, Azure, or GCP environments.

Requirements

• 3–5+ years in a combined DevOps / Security Engineering / DevSecOps role.
• Deep, hands-on experience with CI/CD pipeline engineering using Jenkins, GitLab CI, or GitHub Actions.
• Production experience implementing and tuning SAST, DAST, and SCA tools within automated pipelines.
• Proven ability to secure production workloads on at least one major cloud provider.
• Hands-on experience securing Docker and Kubernetes environments.
• Proficiency with Terraform, CloudFormation, or Pulumi.
• Strong coding ability in Python, Go, or Bash.
• Experience running or contributing to a vulnerability management program.

Nice to Have

• Experience with compliance-as-code frameworks.
• Familiarity with eBPF-based security observability tools.
• Background in penetration testing or red team exercises.
• Knowledge of GitOps workflows and securing the GitOps delivery model.
• Relevant certifications such as CKS, AWS Security Specialty, OSCP, or GIAC.

What We Offer

• Competitive salary ranging from $120,000 to $150,000 per year.
• Fully remote work environment with flexible hours.
• Opportunity to work with cutting-edge blockchain technology.
• Access to continuous learning and professional development resources.
• Collaborative and inclusive company culture.