Impact Through Innovation
Staff DevSecOps Engineer
Location
Washington + 1 moreAll locations: Washington | Virginia
Posted
52 days ago
Salary
$170K - $245K / year
Seniority
Lead
Job Description
Staff DevSecOps Engineer
Red Cell Partners
Role Description As the Staff DevSecOps Engineer, you will be the technical owner of how security is built into Trase's software development lifecycle and cloud operations. - Integrate automated security testing, continuous vulnerability management, and secure coding practices directly into existing CI/CD pipelines. - Own the implementation of Trase's dedicated security architecture, delivering shift-left tooling (SAST, DAST, SCA, secrets scanning, and IaC scanning) alongside production cloud security services. - Standardize and operate secure pipelines to empower Trase's software engineers while maintaining required controls and capabilities. Qualifications - 10+ years of experience in security engineering, DevSecOps, cloud security, or platform security roles. - Deep, hands-on experience securing modern CI/CD pipelines. - Strong cloud security expertise, primarily in Google Cloud Platform. - Expert-level Terraform skills with a track record of building secure-by-default IaC modules. - Demonstrated experience with SIEM operations and incident response leadership. - Practical experience in environments governed by SOC 2, HIPAA, and ISO 27001. - Strong programming or scripting skills (Python, Go, or similar). - Excellent partnership skills and a developer-empathetic mindset. - Strong affinity for working with LLMs and AI agents. - US Citizen and eligible for US security clearance. Requirements - Design, implement, and operate the shift-left security toolchain across Trase's CI/CD pipelines. - Define how findings are triaged, routed, and remediated. - Establish and enforce policy-as-code and pre-merge security gates. - Design and deploy Trase's production cloud security architecture. - Implement foundational controls including network segmentation and workload identity. - Build, codify, and maintain secure-by-default infrastructure modules in Terraform. - Operate and fine-tune Trase's SIEM and security telemetry pipeline. - Enhance and lead aspects of Trase's technical security incident response capability. - Operate the end-to-end vulnerability management lifecycle. - Partner closely with Engineering and the broader Security and Compliance team. - Mentor junior Security and Compliance engineers and members of the Engineering team. Benefits - Career track opportunity with potential for rapid advancement. - 100% employer paid, comprehensive health care including medical, dental, and vision for you and your family. - Paid maternity and paternity for 14 weeks at employees' normal pay. - Unlimited PTO, with management approval. - Opportunities for professional development and continued learning. - Optional 401K, FSA, and equity incentives available. - Mental health benefits available through Tara Mind. - Cost effective GLP-1 solutions available through Crux.
Related Guides
Related Categories
Related Job Pages
More DevOps Engineer Jobs
Role Description As the Staff DevSecOps Engineer, you will be the technical owner of how security is built into Trase's software development lifecycle and cloud operations. - Integrate automated security testing, continuous vulnerability management, and secure coding practices into existing CI/CD pipelines. - Own the implementation of Trase's dedicated security architecture, delivering shift-left tooling (SAST, DAST, SCA, secrets scanning, and IaC scanning). - Standardize and operate secure pipelines to empower software engineers to focus on high-velocity delivery while maintaining necessary controls. Responsibilities - Shift-Left Security in CI/CD: - Design, implement, and operate the shift-left security toolchain across CI/CD pipelines. - Define how findings are triaged, routed, and remediated; partner with engineering teams. - Establish and enforce policy-as-code and pre-merge security gates calibrated to risk. - Cloud Security Architecture: - Design and deploy production cloud security architecture, focusing on Google Cloud Platform (GCP). - Implement foundational controls including network segmentation, workload identity, secrets management, and encryption. - Operate cloud security posture management (CSPM) and cloud workload protection capabilities. - Infrastructure-as-Code & Platform Security: - Build, codify, and maintain secure-by-default infrastructure modules in Terraform. - Embed security controls directly into platform abstractions. - Drive secure baselines for Kubernetes, container runtimes, and serverless workloads. - Detection, Monitoring & SIEM: - Operate and fine-tune Trase's SIEM and security telemetry pipeline. - Define detection-as-code practices and tune detections. - Build dashboards and reporting for real-time visibility into the environment. - Incident Response: - Enhance and lead aspects of Trase's technical security incident response capability. - Serve as a senior responder during security events. - Vulnerability & Threat Management: - Operate the end-to-end vulnerability management lifecycle across application, container, and cloud surface area. - Facilitate remediation SLAs and report on progress to leadership. - Cross-Functional Partnership: - Partner closely with Engineering and the broader Security and Compliance team. - Embed with Product and Engineering teams to ensure security is integral to Trase's builds. - Mentorship & Engineering Leadership: - Mentor junior Security and Compliance engineers and members of the Engineering team. - Establish and propagate patterns, runbooks, and reusable building blocks. Qualifications - 10+ years of experience in security engineering, DevSecOps, cloud security, or platform security roles. - Deep, hands-on experience securing modern CI/CD pipelines. - Strong cloud security expertise, primarily in Google Cloud Platform. - Expert-level Terraform skills with a track record of building secure-by-default IaC modules. - Demonstrated experience operating a SIEM end-to-end. - Hands-on incident response leadership experience. - Practical experience in environments governed by SOC 2, HIPAA, and ISO 27001. - Strong programming or scripting skills (Python, Go, or similar). - Excellent partnership skills and a developer-empathetic mindset. - Strong affinity for working with LLMs and AI agents. - US Citizen and eligible for US security clearance. Nice to Have - Hands-on experience implementing security architectures for FedRAMP, DoD RMF, HITRUST, or other heavily regulated frameworks. - Active US security clearance (Secret, TS, or TS/SCI). - Deep Kubernetes and container security expertise. - Experience securing AI/ML workloads. - Industry certifications such as Google Professional Cloud Security Engineer, AWS Security Specialty, OSCP, GIAC, or CKS. - Open source contributions to security tooling, detection content, or IaC modules. Salary Range $170,000-245,000. This represents the typical salary range for this position based on experience, skills, and other factors. Benefits - Career track opportunity with potential for rapid advancement. - 100% employer paid, comprehensive health care including medical, dental, and vision for you and your family. - Paid maternity and paternity for 14 weeks at employees' normal pay. - Unlimited PTO, with management approval. - Opportunities for professional development and continued learning. - Optional 401K, FSA, and equity incentives available. - Mental health benefits available through Tara Mind.
• The flagship SRE role at VOLL. Published SLOs for critical systems, an error budget used as a release decision tool, blameless postmortems as an established culture, and DORA metrics as a common language between operations and engineering. • Customer Reliability Engineering as a formal practice. Technical customer support moves from a reactive layer to an engine of operational intelligence — a structured Voice of the Customer feeding the product roadmap, customer metrics tied to internal SLOs, and AI copilots boosting the team's productivity. • Operations built to scale globally. Observability, executable runbooks, and incident response capability operating across multiple geographies and time zones. Reliability that scales without requiring the team to double in size. • A culture of measured excellence. Release, capacity, and investment decisions anchored in data, not opinion. An operation that defends itself with numbers, not narrative. • The next generation of technical leaders. Current engineers and analysts evolving into Tech Leads, Specialists, and potential Managers over the next 18–36 months under your direct mentorship. • The SRE↔Engineering↔Customer loop as a competitive advantage. Not three isolated areas — a single continuous-learning machine where every incident becomes an opportunity to improve the product, the process, and the team.
Site Reliability Engineer, Voice Platform, Cloud Operations, DevOps
EverbridgeKeeping people safe and organizations running. Faster.
• Monitor, operate, and improve production voice and cloud platform environments. • Support Asterisk-based VoIP systems, SIP call flows, routing, interoperability, and troubleshooting. • Analyze signaling, media, network, and platform issues using logs, packet captures, and diagnostic tools. • Maintain CI/CD, deployment automation, monitoring, alerting, dashboards, and runbooks. • Participate in incident response, root-cause analysis, capacity planning, upgrades, and maintenance activities.
DevOps Engineer
RethinkFirstRethink First is a global health technology company providing cloud-based treatment tools, training and clinical support
• Designing and managing cloud environments and creating modern automation tools • Building and deploying continuous integration, continuous development, and constant deployment pipeline (CI/CD Pipeline) • Implementing various development, testing, automation tools, and security strategies • Supporting the delivery of quality code that adheres to standards and methodologies • Performing incident management and root cause analysis, and leveraging observability tools • Managing periodic progress reporting



