DevSecOps Engineer III
National Digital Trust Company (In Organization) · United States · 1 wk ago
RemoteRemoteDesignFull-time
Job Overview
You will be a key force in strengthening and scaling our secure digital asset infrastructure. You’ll design and implement automation, security controls, and cloud-native systems within our cloud environment — supporting both proprietary applications and critical third-party integrations. This role offers deep ownership across CI/CD, identity, secrets management, and security observability — with the mandate to push innovation while never compromising safety.
Objectives
- Lead the hardening and modernization of our GitHub ecosystem — consolidating organizations, implementing guardrails and RBAC best practices, and establishing policy-as-code governance at scale.
- Assess and evolve the current CI/CD posture — modernizing pipelines, evaluating tooling, and driving toward fully automated secure delivery workflows.
- Implement Secure Software Development Framework (SSDF) practices to embed “secure-by-design” principles throughout the SDLC — ensuring supply chain integrity from commit to production.
- Act as an SRE for new application infrastructure — building out observability, proactive reliability patterns, performance scaling strategy, and operational readiness.
- Develop and integrate ITSM operational workflows — introducing automation and process maturity where needed to align engineering velocity with auditable controls and resilience.
- Promote a culture of security across the organization.
- Be able to wear many hats, performing critically required duties as necessary, especially as the team is being developed
What you bring to our company
- 5–8+ years of experience in DevSecOps, SRE, or Cloud Security Engineering roles operating in production-critical environments
- Deep hands-on expertise with leading cloud providers (IAM, networking, security services, automation, zero-trust / least privilege, cost awareness)
- Practical experience operating and securing Kubernetes — including IaC-driven provisioning, policy enforcement, and observability
- Strong command of SCM administration — including RBAC, repo automation, organization policy enforcement, and secure SDLC controls
- Proficiency with Infrastructure as Code (Terraform, CDK, or equivalent) and configuration automation (e.g., Helm, ArgoCD, Crossplane, etc.) a plus
- Familiarity with ITSM-aligned engineering operations — enabling traceability, incident management, and operational readiness at scale
- Excellent communicator and proactive collaborator — able to influence cross-functional teams and advocate for secure-by-design principles
Preferred Experience, Skills and Knowledge
- Advanced understanding of cloud security, identity, secrets management, and automated governance — ideally aligned to frameworks like CSF 2.0, ISO, or SOC2
- Previous experience in fintech, blockchain, digital assets, or other highly regulated / high-trust environments
- Demonstrated experience owning and maturing CI/CD pipelines, with strong emphasis on supply-chain integrity, infrastructure automation, and SSDF-aligned delivery
- Strong self-starter with strong analytical and problem-solving skills