Назад
Company hidden
23 часа назад

Senior DevSecOps Engineer (Fintech)

130 000 - 225 000$
Формат работы
remote (только USA)/hybrid
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Senior DevSecOps Engineer (Fintech): Building and automating the security posture and compliance frameworks for a financial platform with an accent on policy-as-code and automated remediation. Focus on integrating security gates into CI/CD pipelines, ensuring SOC 2 compliance, and developing AI-assisted security operations.

Location: Remote or Hybrid (New York, NY or Charlotte). Must be based in the US and work Eastern Standard Time (EST) hours.

Total Cash Compensation: $130,000 – $225,000 per year

Company

Bankrate is a financial services platform that helps consumers compare and make confident financial decisions using proprietary data and advanced technology.

What you will do

  • Own the engineering side of SOC 2 Type 2 compliance, including control implementation and evidence collection.
  • Build and maintain CI/CD security gates (SAST/SCA, secret scanning, SBOM) as reusable pipeline components.
  • Implement cloud security posture management (CSPM) and runtime security tooling across the environment.
  • Develop auto-remediation workflows and AI-assisted pipelines to detect and fix findings.
  • Encode security and compliance controls into infrastructure-as-code (Terraform) and policy-as-code.
  • Partner with corporate security and GRC functions to mature in-house security capabilities.

Requirements

  • Must be based in the United States and work Eastern Standard Time (EST) hours.
  • 5+ years in security engineering, DevSecOps, or platform engineering with a strong security focus.
  • Deep hands-on experience with major cloud providers (compute, networking, IAM, key management).
  • Strong proficiency in Terraform and policy-as-code.
  • Proven experience building pipeline security controls (SAST/SCA, secret scanning) into developer workflows.
  • Working knowledge of SOC 2 or comparable compliance frameworks.

Culture & Benefits

  • Comprehensive health insurance (medical, dental, vision) and life insurance.
  • 401(k) plan with company match.
  • Flexible Paid Time Off (PTO) starting at 20 days per year.
  • Paid Parental Bonding Benefit Program.
  • Flexible Spending Accounts and Employee Assistance Program.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →