Senior DevSecOps Engineer

TL;DR

Senior DevSecOps Engineer: Lead a DevSecOps team building and managing secure cloud environments and CI/CD pipelines for firmware and software delivery with an accent on integrating automated security testing, vulnerability management, and compliance controls. Focus on implementing IaC, threat modeling, shift-left security practices, and ensuring cybersecurity standards across product releases.

Location: Longmont, CO 80503 (remote or in-office approximately 40% of the time, occasional travel <10%)

Salary: $110,000–$170,000

Company

Engineering staffing firm connecting STEM talent to R&D teams in innovative tech environments.

What you will do

• Lead DevSecOps team in building secure cloud setups, CI/CD pipelines with security scanning, vuln management, and compliance.
• Integrate SAST, DAST, SCA, SBOM tools; perform threat modeling and enforce secure coding standards.
• Automate infrastructure with IaC, manage binary repos, implement monitoring/logging with Prometheus/Grafana.
• Drive vulnerability lifecycle, troubleshoot CI/CD/security issues, collaborate on metrics and improvements.
• Mentor teams, conduct interviews, procure tools, stay current on security trends and standards.

Requirements

• Bachelor of Science in Computer Science or related Engineering field
• 2+ years as DevSecOps Engineer, 5+ total years engineering experience, 2+ years technical lead
• Development experience in embedded firmware or software
• Experience with SAST/DAST/SCA/SBOM in CI/CD, binary repos, AWS/cloud, IaC/config mgmt, scripting (Bash/Python/PowerShell)
• Containerization (Docker), CI/CD (Jenkins/Bitbucket/GitHub Actions), monitoring (Prometheus/Grafana)
• Cybersecurity knowledge, shift-left security, problem-solving, communication, interviewing experience

Nice to have

• Agile/DevOps/DevSecOps methodologies, Git/Atlassian tools
• Cybersecurity certs (CISSP, Security+, AWS Security)
• SBOM standards (SPDX/CycloneDX), industry regs (EN 18037, IEC 62443, EU Cyber Resilience Act)
• Threat modeling, vendor management, multi-disciplinary experience

Culture & Benefits

• Collaborative cross-functional environment in office/lab/manufacturing setting
• Remote or hybrid in-office flexibility (~40% office time), occasional travel <10%
• 401k, major medical/dental/vision for longer assignments, statutory sick pay
• Reasonable accommodations for disabilities, E-Verify participation, equal opportunity employer
• Focus on continuous improvement, knowledge sharing, professional excellence