Plus
Включить Plus
Назад
Company hidden
1 день назад

Senior Product Security - Senior DevSecOps Engineer (AWS/GCP)

Формат работы
remote (только USA)/hybrid/onsite
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Релокация
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Senior Product Security - Senior DevSecOps Engineer (AWS/GCP): Architecting and scaling a security-first engineering culture across cloud infrastructure and CI/CD pipelines with an accent on automation, detection, and response. Focus on embedding security into development workflows, hardening multi-cloud environments, and automating incident response.

Location: On-site, Hybrid, or Remote within New York, Bay Area, Chicago, or Greenville, NC

Company

A multifaceted media and entertainment company redefining global storytelling and digital content creation through innovative business initiatives and social impact.

What you will do

  • Design and implement security guardrails across AWS and GCP using Terraform policy-as-code.
  • Integrate SAST, DAST, and dependency scanning into GitHub Actions pipelines.
  • Build and tune SIEM detection logic mapped to the MITRE ATT&CK framework.
  • Develop and maintain SOAR playbooks to automate incident response and reduce MTTR.
  • Automate evidence collection for audits and translate compliance controls into technical enforcement.

Requirements

  • 5+ years of experience in DevSecOps, Cloud Security, or Product Security Engineering.
  • Deep technical expertise in securing AWS and GCP environments.
  • Advanced proficiency with Terraform and Python for automation and custom tooling.
  • Hands-on experience with SIEM/SOAR platforms and GitHub Actions.
  • Must be based in or be able to relocate to the US (specifically NY, SF, Chicago, or Greenville).

Nice to have

  • Experience with identity architectures like Okta or Azure AD (SSO, SCIM, conditional access).
  • Familiarity with Elastic SIEM or modern log aggregation platforms.
  • Experience with EDR/XDR platforms such as CrowdStrike or SentinelOne.
  • Experience managing endpoint security controls and MDM solutions (Jamf, Intune).

Culture & Benefits

  • Comprehensive health benefits: Medical (Blue Cross Blue Shield), Dental, Vision, and company-paid Life Insurance.
  • Financial perks: 401k plan with Safe Harbor company-matching and HSA contributions.
  • Flexible vacation policy and paid company holidays.
  • Company-provided technology package.
  • Relocation assistance including travel and housing for the first 90 days.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →