Jobs · Engineering · North Carolina

Senior DevSecOps Engineer

Capital Group · Charlotte, NC · 1 wk ago
Engineering$137k–$219k/yrFull-time

About the role

We are seeking a Senior DevSecOps Engineer to join our Application Security team. This role is hybrid (in-office 3 days/week) in New York, NY.

Responsibilities

  • Simplify automation that applies security inter-workings with CI/CD pipelines.
  • Build relationships with developers, stakeholders and scrum masters to incorporate security principles into engineering design and deployments.
  • Supervise testing and validation in application security controls across projects.
  • Oversee implementation of defensive practices and countermeasures across infrastructure and applications.
  • Draft and uphold CI/CD security strategy and practices in tandem with other technical team leads.
  • Serve as a point of contact for security-based escalations and remain tightly involved through resolution.
  • Build services and tools to enable developers and engineers to easily use security components produced by the Application Security team members.
  • Support the ability to “shift left” and incorporate security early on and throughout the development lifecycle.
  • Communicate vulnerability results in a manner understood by technical and non-technical business units based on risk tolerance and threat to the business, and gain support through influential messaging.
  • Leverage Vulnerability database sources to understand the weakness, probability and remediation options supplied by vendors as well as workarounds.
  • Regularly research and learn new tactics, techniques and procedures (TTPs) in public and closed forums, and work with colleagues to assess risk and implement/validate controls as necessary through the CI/CD pipeline.
  • Enrich DevOps architecture with security standards and best practices.
  • Partner with teams to define key performance indicators (KPIs) and metrics across business units.

Requirements

  • Bachelor’s degree in Computer Science or related field and/or at least 7+ years’ experience in information technology, information security administration or security operations.
  • Hands-on experience of containers (e.g., Docker) and container orchestration (e.g., Docker Swarm, Kubernetes).
  • Experience with agile workflows, including Scrum and Kanban.
  • Understanding DevSecOps tooling, including Terraform, Ansible, and CI/CD Pipelines.
  • Experience with operations and security across Amazon Web Services (AWS).
  • Ability to obtain and maintain technical team and business support to influence a collaborative effort to reduce attack surface while performing rapid, continuous implementation.
  • Expert Programming knowledge in Python. Other Languages a bonus.
  • Interested in Agentic software development, including developing agentic Skills to accelerate feature requests and improve the quality of solutions delivered.
  • Excellence in communicating business risk and remediation requirements from assessments.

Qualifications

  • Knowledge of information security and application security tools is highly desirable.
  • Security-focused and helps CI/CD pipelines deliver secure software in a scalable manner while showing developer empathy and engineering excellence such as obsession with security tool output quality, false positive removal, using data / metrics to improve tools that integrate into the CI/CD pipeline.

Skills

  • Expert Programming knowledge in Python.
  • Other Languages a bonus.
  • Interested in Agentic software development, including developing agentic Skills to accelerate feature requests and improve the quality of solutions delivered.

Benefits

  • Competitive salary range based on location.
  • Annual performance bonus.
  • Capital’s annual profitability bonus.
  • Retirement plan where Capital contributes 15% of your eligible earnings.

Pay

Charlotte Base Salary Range: $136,749-$218,798
Southern California Base Salary Range: $159,354-$254,966
New York Base Salary Range: $168,924-$270,278

Schedule

This role is hybrid (in-office 3 days/week) in New York, NY.

Join Capital Group

If this role isn’t what you’re looking for, check out our other opportunities and join our talent community.

Learn More About Capital Group

We are an equal opportunity employer, which means we comply with all federal, state and local laws that prohibit discrimination when making all decisions about employment. As equal opportunity employers, our policies prohibit unlawful discrimination on the basis of race, religion, color, national origin, ancestry, sex (including gender and gender identity), pregnancy, childbirth and related medical conditions, age, physical or mental disability, medical condition, genetic information, marital status, sexual orientation, citizenship status, AIDS/HIV status, political activities or affiliations, military or veteran status, status as a victim of domestic violence, assault or stalking or any other characteristic protected by federal, state or local law.

Similar jobs

Senior DevSecOps Engineer

Capital GroupIrvine, CA· 1 wk ago
Engineering$137k–$219k/yrapply on capgroup.wd1.myworkdayjobs.com

Senior DevSecOps Engineer

eSimplicityWashington DC-Baltimore Area· 4 days ago
RemoteEngineeringapply on recruiting.paylocity.com