Role overview

Senior DevSecOps Engineer

Requirements and responsibilities

Readable role content extracted into sections for faster review.

Key Responsibilities

  • Cloud & Infrastructure Security - Write and maintain Infrastructure as Code (IaC) with secure defaults, ensuring least privilege access and robust cloud configurations.
  • Vulnerability Management - Hunt for weaknesses, perform threat modeling, prioritize remediation, and guide engineering teams on how to fix discovered flaws.
  • Incident Response & Monitoring - Monitor live systems, investigate security anomalies, and respond to breaches.
  • Develop, deploy, and maintain Infrastructure-as-Code (IaC) in a GCP cloud-based environment
  • Lead the development and enforcement of security architecture and operational best practices
  • Establish monitoring, alerting, and incident response strategies across environments
  • Define and execute on security roadmaps (e.g., threat modeling, vulnerability scanning, IAM policies)
  • Partner with developers to shift security and reliability left into the SDLC
  • Support compliance and audit initiatives (SOC2, ISO27001)
  • Develop and maintain automated CI/CD pipelines for DBs, Servers, containers, and applications using DevSecOps tools to include Terraform, Ansible, GitHub, ArgoCD
  • Develop integration interfaces using Python, Bash and Go
  • Deploy and maintain complex modern cloud architectures
  • Create automated testing plans for infrastructure and applications
  • Create and update technical documentation (e.g. user guides, infrastructure diagrams)
  • Work across infrastructure that contains both Linux and Windows
  • Work and communicate effectively in a group environment with technical and non-technical, management and customer both written and verbally
  • Utilize robust troubleshooting skills
  • Instill and apply solid engineering rigor, to include configuration management, testing
  • Develop/engineer as part of an Agile team

Qualifications

  • 5+ years of experience in DevOps, SRE, or DevSecOps roles, with increasing leadership or ownership
  • Deep knowledge of cloud infrastructure, with a focus on security, scalability, and cost-efficiency
  • Strong experience with infrastructure-as-code (Terraform, Ansible)
  • Fluency in CI/CD automation (GitHub Actions, ArgoCD, etc.)
  • Strong understanding of security fundamentals: identity and access management, secrets management, encryption, container security, etc.
  • Familiarity with compliance frameworks like SOC2 or ISO27001
  • Comfortable writing code and automation scripts (e.g., Python, Bash, Go)
  • A strategic mindset paired with startup scrappinessโ€”you can zoom out and drive systems-level thinking, and also dive in and ship
  • Experience with Kubernetes, service mesh (e.g., Istio), and zero-trust architecture
  • History of leading incident response or large-scale reliability improvements
  • Strong communication skills across engineering and non-technical stakeholders
Similar roles

Keep a backup shortlist.

Browse stack
FocusDevSecOps EngineerRole area
Seniority signalSeniorCandidate level
StackCI/CD, Docker, GCPPrimary skills
Location42 accepted countriesEligibility

Stack

Use these tags to compare similar remote roles.

Location eligibility

Candidates should apply only when their profile country is listed here.

Hiring flow

WithMira shows the role, then sends candidates to the company application.

1Check role fit, stack, and location eligibility in WithMira.
2Open the company application page from the tracked apply link.
3Save the role or subscribe for similar opportunities before leaving.
Apply on company siteCompany siteOpen link