Principal Engineer, Information Security (DevSecOps)
Tasks
- Administer GitHub Advanced Security including CodeQL secret scanning and Dependabot
- Architect and maintain security gates in GitHub Actions CI CD pipelines
- Author and deploy Checkov custom policies for Terraform IaC
- Build maintain and enforce security scanning stages in CI CD pipelines
- Collaborate with security governance to generate compliance evidence for PCI DSS NIST and CIS
- Define and enforce security governance for agentic AI tooling
- Document architecture decisions security policies and operational runbooks
- Embed threat modeling into pipelines and workflows
- Integrate security tooling outputs into SIEM and SOAR for alerting triage and response
- Lead DevSecOps team deliver daily execution weekly syncs and PI planning
- Manage Terraform based infrastructure security across multi account AWS environments
- Mentor engineers provide training pair on complex work and review output
- Operate and configure Palo Alto Prisma or Cortex for CNAPP cloud security posture and image scanning
- Own DevSecOps roadmap across pipeline security IaC policy enforcement application security tooling and cloud security posture management
- Participate in SAFe Agile planning and maintain Jira hygiene
Perks/Benefits
- N/A
Skills/Tech-stack
ABAC | AI gateway | AWS Control Tower | Advanced Security | Bridgecrew | CI/CD | CIS Controls | CNAPP | Checkov | CodeQL | Control Tower | Cortex XSOAR | Dependabot | DevSecOps | GitHub Actions | GitHub Advanced Security | IAM | Infrastructure as Code | Jira | MCP | Multi-account | Multi-account AWS | NIST | Orca Security | PCI DSS | Palo Alto | Palo Alto Cortex | Palo Alto Prisma | Palo Alto Prisma Cloud | Prisma Cloud | Prompt injection | Prompt injection mitigation | SAFe | SIEM | SOAR | Secret Scanning | Security Scanning | Terraform | Terraform Policies | Tfsec | Threat modeling | Tool Use Authorization | Tool use | Transit Gateway | VPC | Wiz | “as-code”
Education
Roles
DevSecOps | DevSecOps Engineer | Engineer | Principal | Principal DevSecOps Engineer
Related jobs
-
Senior DevSecOps Engineer USD 100K-130KAWS Secrets | AWS Secrets Manager | Advanced Security | Bicep | CI/CD401k plan with company matching | Bereavement | Employee assistance program | Employee discount program | Health dental vision careSenior-level Full TimeRemote - Nationwide, United States R8h ago
-
Mid-level Full TimeMinneapolis, MN, United States9h ago
-
Senior-level Full TimeAnnapolis Junction, United States11h ago
-
Automation platforms | Bash | Cortex XSOAR | Incident Response | JSONOnsite as neededSenior-level ContractColumbia, United States12h ago
-
DCO Engineer (TS/SCI Clearance) USD 88K-147KAWS | Agile frameworks | Automation and response | Ceph | ContainerizationMid-level Full TimeColorado Springs, Colorado, United States13h ago
-
Network Engineer, Operations & Support USD 110K-125KAI Automation | After Action Reviews | Alerting | Analytics | BGPTravel opportunitySenior-level Full TimeDenver, CO | Houston, TX14h ago
-
Linux System Administrator USD 100K-110KAPI Management | Ansible | Ansible Automation | Ansible Automation Platform | ArgoCDOn-call rotation | Rotational Friday shifts | Standby supportMid-level Full TimeCenter, Center District, IL15h ago
-
Network Security and Firewall Engineer - City USD 86K-132KAccess Control | Access Control Lists | Detection and prevention | Event management | Firewall administrationSenior-level Full TimeOklahoma City, OK, United States20h ago
-
Director, Splunk Platform Engineering & SRE USD 147K-310KAnsible | Data Ingestion | Disaster Recovery | Distributed Systems | Error BudgetsFlexible global resources and tools | Paid leave | Paid volunteer time | Wellbeing programsExecutive-level Full TimeNew York, NY, United States23h ago
-
Senior DevSecOps Engineer USD 150K-180KAWS | Admission control | Alert triage | CI/CD | CJIS401k | Accident insurance | Additional life insurance | Central Time Zone availability | Employer-paid disability insuranceSenior-level Full TimeChicago, IL, US R1d ago
-
Principal Threat Detection Engineer - Blue Team USD 144K-288KAdversary Emulation | Bash | Cribl | CrowdStrike | Defender for EndpointSenior-level Full TimeNew York-161 Ave of the Americas, …1d ago
-
Lead Splunk Administrator USD 135K-261KAWS | AWX | Agile | Ansible | ConfluenceFamily care resources | Health and wellness benefits | Hybrid work schedule | Online therapy | Paid time offSenior-level Full TimeOwings Mills, MD - Building 3, …1d ago
-
Cybersecurity Senior Engineer- Technical Lead – Identity Federation, Azure & Access Policy USD 95K-142KADFS | Access Management | Active Directory | Automation | Azure Entra401k plan | Dental insurance | Disability insurance | Health insurance | Life insuranceSenior-level Full TimeRaleigh NC - 3201 Beechleaf Court, …1d ago
-
Information Systems Security Engineer USD 99K-225KATO | Access Management | Atc | Containerization | DHCPDependent care | Paid leave | Professional development | Tuition assistance | Work-life programsMid-level Full TimeUSA, NC, Fort Bragg (2175 Reilly …1d ago
-
Cloud Engineer USD 160K-180KARM Templates | AWS | AWS CloudFormation | Azure Resource | Azure Resource Manager401k match | Health insurance | Life insurance | Paid time off | Professional development reimbursementMid-level Full TimeUnited States - Remote R1d ago
-
Systems Engineer - Infrastructure USD 108K-227KAccess Control | Ansible | Bash | DISA STIGs | Data ProtectionContinuing education | Flexible time off | Healthcare benefits | Learning and development | Retirement benefitsSenior-level Full TimeALS ABERDEEN PROVING GROUND MD, United …1d ago
-
API Integration | AWS | Angular | Azure GovCloud | CI/CDClassified environment work | Long-term program | On-site workMid-level Full TimeLincoln, MA, United States1d ago
-
Principal Platform & Security Engineer USD 136K-204KAWS | Access Control | Alerting | CI/CD | Cloud Cost ManagementSenior-level Full TimeSanta Monica, CA, United States1d ago
-
Senior Security Engineer USD 176K-220KABAC | AWS IAM | Authentication | Authorization | Azure AD401k match | Commuting benefits | Equity | Fertility benefits | Financial coachingSenior-level Full TimeSan Francisco, CA1d ago
-
Physical Security Network Engineer - SOUTHCOM J2 USD 107K-144KAAA | Active Directory | Application deployment | Backup Management | CertificatesMid-level Full TimeDoral, US-FL, US1d ago
-
Principal Systems Security Engineer USD 150KAPI Gateway | AWS | Anomaly Detection | Authentication | AuthorizationRemote work | Travel as neededSenior-level Full TimeSalt Lake City, UT1d ago
-
Senior Security Engineer - Application Security USD 150K-185KAWS | Application Security | Azure | CI/CD | Cloud ArchitectureCommuter benefits | Company holidays | Health, dental, and vision insurance | Hybrid work schedule | Paid parental leaveSenior-level Full TimeNew York, NY1d ago
-
Sales Engineer, Enterprise Named USD 200K-240KAccess Management | Cloud Security | Communication skills | Cybersecurity | IPSec401k | Dental insurance | Disability insurance | Leave Program | Life insuranceMid-level Full TimeNew York, NY, United States1d ago
-
C# | C++ | Code review | Design review | Exploit MitigationSenior-level Full TimeRedmond, WA, US1d ago
-
Information Security Engineer | North America (EST) USD 167K-215KAWS | Azure | Browser Extension | Browser extension security | Browser managementAdditional country based perks and benefits | Optional WeWork access | Remote work flexibility | Stock grant opportunitiesSenior-level Full TimeUSA R1d ago