Senior DevSecOps Engineer – Cloud Infrastructure Security
Partnerverse · St Cloud, MN · 1 wk ago
EngineeringFull-time
Key Responsibilities
- Design and implement secure cloud infrastructure architectures for web, mobile, and blockchain applications.
- Work with Solution Architects and Engineering teams to define secure, scalable, and highly available cloud environments.
- Own the security of application deployments across development, staging, and production environments.
- Design and implement DevSecOps practices throughout the Software Development Lifecycle (SDLC).
- Build and secure CI/CD pipelines by integrating automated security controls, vulnerability scanning, and policy enforcement.
- Implement Infrastructure as Code (Terraform, CloudFormation, or similar) following security best practices.
- Secure Kubernetes clusters, container platforms, and orchestration environments.
- Design and enforce IAM, RBAC, least-privilege access, secrets management, and identity governance.
- Implement cloud security controls across AWS, Azure, or GCP, including networking, encryption, logging, monitoring, and compliance.
- Perform infrastructure security reviews and identify risks during architecture and deployment planning.
- Collaborate with development teams to ensure applications are deployed using secure cloud-native patterns.
- Implement infrastructure monitoring, threat detection, and incident response capabilities.
- Secure APIs, ingress controllers, load balancers, WAFs, and cloud networking components.
- Conduct infrastructure vulnerability assessments and coordinate remediation efforts.
- Maintain disaster recovery, backup, high availability, and business continuity strategies.
- Support compliance initiatives such as ISO 27001, SOC 2, PCI DSS, and other security frameworks.
- Document security architecture, deployment standards, and cloud security best practices.
Must-Have Qualifications
- 8+ years of experience in DevSecOps, Cloud Security, Infrastructure Security, or Platform Engineering.
- Strong hands-on experience designing and securing cloud infrastructure on AWS, Azure, or GCP.
- Proven experience architecting secure environments for web and mobile application deployments.
- Strong understanding of cloud networking, VPC/VNet design, subnets, firewalls, VPNs, NAT Gateways, Load Balancers, DNS, and private networking.
- Hands-on experience with Infrastructure as Code using Terraform, CloudFormation, or similar tools.
- Experience designing and securing CI/CD pipelines using GitLab CI, Azure DevOps, GitHub Actions, or Jenkins.
- Strong expertise in Kubernetes, Docker, and container security.
- Experience implementing IAM, RBAC, Identity Federation, Secrets Management, and Zero Trust principles.
- Knowledge of infrastructure hardening, vulnerability management, and cloud security best practices.
- Experience with monitoring and observability tools such as Prometheus, Grafana, ELK/OpenSearch, Datadog, or similar platforms.
- Strong scripting and automation skills using Python, Bash, or Go.
- Experience collaborating with engineering teams during solution architecture and production deployments.
- Strong analytical, troubleshooting, and incident response skills.
Preferred Qualifications
- Experience securing FinTech, blockchain, Web3, or high-availability cloud platforms.
- Knowledge of Kubernetes security tools such as Kyverno, OPA Gatekeeper, Falco, or Trivy.
- Experience with cloud security platforms such as Prisma Cloud, Wiz, Aqua Security, or Microsoft Defender for Cloud.
- Familiarity with service mesh technologies such as Istio or Linkerd.
- Understanding of SRE principles, production reliability, and operational excellence.
- Relevant certifications such as AWS Security Specialty, CKS, CKA, AZ-500, CISSP, or Terraform Associate.