Jobs · Engineering · New York

Senior DevSecOps Engineer

Capital Group · New York, United States · 1 wk ago
Engineering$137k–$219k/yrFull-time

About the role

We are seeking a Senior DevSecOps Engineer to join our Application Security team. This role is hybrid (in-office 3 days/week) in New York, NY.

Responsibilities

  • Simplify automation that applies security inter-workings with CI/CD pipelines.
  • Build relationships with developers, stakeholders and scrum masters to incorporate security principles into engineering design and deployments.
  • Supervise testing and validation in application security controls across projects.
  • Oversee implementation of defensive practices and countermeasures across infrastructure and applications.
  • Draft and uphold CI/CD security strategy and practices in tandem with other technical team leads.
  • Serve as a point of contact for security-based escalations and remain tightly involved through resolution.
  • Build services and tools to enable developers and engineers to easily use security components produced by the Application Security team members.
  • Support the ability to “shift left” and incorporate security early on and throughout the development lifecycle.
  • Communicate vulnerability results in a manner understood by technical and non-technical business units based on risk tolerance and threat to the business, and gain support through influential messaging.
  • Leverage Vulnerability database sources to understand the weakness, probability and remediation options supplied by vendors as well as workarounds.
  • Regularly research and learn new tactics, techniques and procedures (TTPs) in public and closed forums, and work with colleagues to assess risk and implement/validate controls as necessary through the CI/CD pipeline.
  • Enrich DevOps architecture with security standards and best practices.
  • Partner with teams to define key performance indicators (KPIs) and metrics across business units.

Requirements

  • Bachelor’s degree in Computer Science or related field and/or at least 7+ years’ experience in information technology, information security administration or security operations.
  • Hands-on experience of containers (e.g., Docker) and container orchestration (e.g., Docker Swarm, Kubernetes).
  • Experience with agile workflows, including Scrum and Kanban.
  • Understanding DevSecOps tooling, including Terraform, Ansible, and CI/CD Pipelines.
  • Experience with operations and security across Amazon Web Services (AWS).
  • Ability to obtain and maintain technical team and business support to influence a collaborative effort to reduce attack surface while performing rapid, continuous implementation.
  • Expert Programming knowledge in Python. Other Languages a bonus.
  • Interested in Agentic software development, including developing agentic Skills to accelerate feature requests and improve the quality of solutions delivered.
  • Excellence in communicating business risk and remediation requirements from assessments.

Qualifications

  • Knowledge of information security and application security tools is highly desirable.
  • Security-focused and helps CI/CD pipelines deliver secure software in a scalable manner while showing developer empathy and engineering excellence such as obsession with security tool output quality, false positive removal, using data / metrics to improve tools that integrate into the CI/CD pipeline.

Skills

  • Expert Programming knowledge in Python.
  • Other Languages a bonus.
  • Interested in Agentic software development, including developing agentic Skills to accelerate feature requests and improve the quality of solutions delivered.
  • Excellence in communicating business risk and remediation requirements from assessments.

Benefits

  • Company-funded retirement contribution factors in salary and variable pay, including bonuses.
  • Generous time-away and health benefits from day one.
  • The opportunity for flexible work options.
  • Access to on-demand professional development resources that allow you to hone existing skills and learn new ones.

Pay

Charlotte Base Salary Range: $136,749-$218,798
Southern California Base Salary Range: $159,354-$254,966
New York Base Salary Range: $168,924-$270,278

Schedule

This role is hybrid (in-office 3 days/week) in New York, NY.

Join Capital Group

If this role isn’t what you’re looking for, check out our other opportunities and join our talent community.

Learn More About Capital Group

At Capital Group, the success of the people who invest with us depends on the people in whom we invest. That’s why we offer a culture, compensation and opportunities that empower our associates to build successful and prosperous careers. Through nine decades, our goal has been to improve people’s lives through successful investing. We know that our history is a testament to the strength of the people we hire. More than 9,000 associates in 30+ offices around the world help our clients and each other grow and thrive every day. Find us on LinkedIn, Instagram, YouTube and Glassdoor.

Similar jobs