Senior DevSecOps / Platform Security Engineer (AWS + Kubernetes)

175 000 - 215 000$

Формат работы

remote (только USA)

Тип работы

fulltime

Грейд

senior

Английский

Страна

Вакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:

TL;DR

Senior DevSecOps / Platform Security Engineer (AWS + Kubernetes): Designing and implementing production security controls across AWS and Kubernetes platforms with an accent on CI/CD security automation, software supply chain controls, and policy-as-code. Focus on building secure-by-default guardrails, operationalizing vulnerability management, and ensuring compliance within regulated environments.

Location: Remote, USA

Salary: $175,000 – $215,000

Company

hirify.global is an insights company that leverages artificial intelligence and mathematical optimization to ensure the resilience of complex systems.

What you will do

Design and maintain CI/CD security controls including SAST, SCA, secrets scanning, and IaC scanning across all repositories.
Implement Kubernetes security architecture including RBAC hardening, workload security baselines, and admission policies.
Develop software supply chain controls such as SBOM generation, artifact signing, and provenance verification.
Establish AWS security guardrails covering IAM least privilege, network controls, encryption, and logging.
Operationalize vulnerability management with risk-based prioritization and measurable remediation SLAs.
Translate regulatory requirements (e.g., NIST SP 800-171 and CMMC) into automated engineering guardrails.

Requirements

5+ years of experience in DevOps, SRE, or Security Engineering with a strong focus on automation.
Hands-on experience securing AWS environments (IAM, KMS, and network controls).
Deep expertise in Kubernetes security (EKS), including RBAC and policy enforcement.
Proficiency in Infrastructure as Code tools such as Terraform, CloudFormation, CDK, or Pulumi.
Strong scripting skills in Python, Go, or Bash for building integrations and internal tooling.
Must be based in the USA.

Nice to have

Experience with OPA/Gatekeeper or Kyverno for policy-as-code.
Knowledge of software supply chain security tools like cosign.
Experience building internal developer platforms or "golden paths".
Familiarity with NIST SP 800-171 or CMMC compliance standards.

Culture & Benefits

Fully remote, results-based work environment with flexible scheduling.
Comprehensive health insurance (medical, dental, vision) 100% employer-paid.
Competitive salary, bonus, and equity package.
Unlimited PTO with manager approval.
14 weeks of fully-paid parental leave.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →