DevSecOps Engineer

Description

At Qodo, we're building a multi-agent platform for busy developers like you to move fast and confidently across the SDLC. Our multi-agent platform currently provides two main agents: one for code generation via different IDEs and the second for Code Review that lives in your git. 

We are looking for a DevSecOps Engineer to join our DevOps team and be responsible for maintaining security within our cloud environment, and to ensure secure application deployment and operations.

Responsibilities:

• Lead the security domain at Qodo by developing a strategy for securing Qodo’s cloud and its assets
• Drive the way software is created at Qodo to bring about secured-by-default products ranging from static code analysis to GenAI guardrails
• Hands-on implement and maintain application security controls across cloud environments while collaborating with DevOps on security automation
• Conduct security assessments, vulnerability scanning, and secure code reviews for cloud-based applications
• Develop security standards, respond to incidents, and provide remediation guidance for identified vulnerabilities

Requirements

• 4+ years of proven experience in application security engineering with strong knowledge of cloud security principles
• Experience with security tools (SAST, DAST, monitoring) and secure coding and infra practices
• Understanding of CI/CD pipelines, container security, and DevSecOps principles

Advantages:

• Security certifications (CISSP, AWS Security Specialty)
• Scripting/programming skills and knowledge of network security concepts
• Problem solving with AI

About the team