Principal Engineer, Information Security (DevSecOps)
Tasks
- Administer GitHub Advanced Security including CodeQL secret scanning and Dependabot
- Architect and maintain security gates in GitHub Actions CI CD pipelines
- Author and deploy Checkov custom policies for Terraform IaC
- Build maintain and enforce security scanning stages in CI CD pipelines
- Collaborate with security governance to generate compliance evidence for PCI DSS NIST and CIS
- Define and enforce security governance for agentic AI tooling
- Document architecture decisions security policies and operational runbooks
- Embed threat modeling into pipelines and workflows
- Integrate security tooling outputs into SIEM and SOAR for alerting triage and response
- Lead DevSecOps team deliver daily execution weekly syncs and PI planning
- Manage Terraform based infrastructure security across multi account AWS environments
- Mentor engineers provide training pair on complex work and review output
- Operate and configure Palo Alto Prisma or Cortex for CNAPP cloud security posture and image scanning
- Own DevSecOps roadmap across pipeline security IaC policy enforcement application security tooling and cloud security posture management
- Participate in SAFe Agile planning and maintain Jira hygiene
Perks/Benefits
- N/A
Skills/Tech-stack
ABAC | AI gateway | AWS Control Tower | Advanced Security | Bridgecrew | CI/CD | CIS Controls | CNAPP | Checkov | CodeQL | Control Tower | Cortex XSOAR | Dependabot | DevSecOps | GitHub Actions | GitHub Advanced Security | IAM | Infrastructure as Code | Jira | MCP | Multi-account | Multi-account AWS | NIST | Orca Security | PCI DSS | Palo Alto | Palo Alto Cortex | Palo Alto Prisma | Palo Alto Prisma Cloud | Prisma Cloud | Prompt injection | Prompt injection mitigation | SAFe | SIEM | SOAR | Secret Scanning | Security Scanning | Terraform | Terraform Policies | Tfsec | Threat modeling | Tool Use Authorization | Tool use | Transit Gateway | VPC | Wiz | “as-code”
Education
Roles
DevSecOps | DevSecOps Engineer | Engineer | Principal | Principal DevSecOps Engineer
Related jobs
-
Security Researcher, Agentic AI Threats USD 293K-405KApplication Security | CI/CD | Cloud Security | Container Security | Distributed SystemsMid-level Full TimeSan Francisco10h ago
-
Cloud Platform/Automation Engineer USD 135K-166KAWS CloudWatch | AWS Lambda | AWS Systems Manager | AWS systems | Active DirectorySenior-level Full TimeFalls Church, VA, United States11h ago
-
Senior Security Engineer, Google Photos AI Security USD 174K-252KCoding | Computer Security | Network Security | Risk Analysis | Security EngineeringSenior-level Full TimeMountain View, CA, USA16h ago
-
AWS | Azure | Cloud Security | Communication Protocols | Cybersecurity401k program | Car discounts | Cruise discounts | Dental benefits | Employee assistance programSenior-level Full TimeFort Worth, TX, US20h ago
-
Senior Information Security Engineer USD 104K-165KComputer forensics | Cyber Threat | Cyber threat analysis | Development Life Cycle | Digital forensicsSenior-level Full TimeRochester, MN, United States1d ago
-
Cloud DevSecOps Engineer USD 133K-166KAWS | Ansible | Automation | Azure | Azure DevOps401k with company match | Associate Volunteer Program | Disability benefits | Employee assistance program | Flexible spending accountMid-level Full TimeHoover, AL - Riverchase Operations Center …1d ago
-
Automated compliance | C# | CI/CD | Cloud Security | Git401k | Annual discretionary bonus | Dental insurance | Family sick leave | Holiday paySenior-level Full TimeChicago - One North Wacker Drive, …1d ago
-
DevOps, Cloud, Infrastructure Engineer USD 108K-173KADFS | AI | AWS | Agile | AnalyticsAdvancement | On-call support | Overtime as needed | Professional development | Work-life balanceSenior-level Full TimeMacdill AFB, FL, USA, United States1d ago
-
Sr. Security Engineer USD 120K-165KAI Security | AWS | Access Management | Alert Tuning | Attack surface401k match | Legal coverage | Life insurance | Long-term disability | Medical, dental & vision coverageSenior-level Full TimeMetro 9 - West Valley City, …1d ago
-
Principal Engineer- Digital Assets USD 220K-300KAPI Design | API Gateway | Automated testing | Blockchain | CI/CDSenior-level Full TimeBuilding 400-Whippany Campus, Jefferson Park, United …1d ago
-
Cloud Security DevOps Engineer USD 94K-105KAWS | AWS Config | AWS Well Architected | AWS Well-Architected Framework | Access ControlAnnual bonus eligibility | Hybrid work options | Remote work optionsMid-level Full TimeCedar Rapids, Iowa, United States1d ago
-
ACAS | Assessment and Authorization | CISSP | Certification testing | Continuous Monitoring401k matching | 9/80 work schedule | Company-Paid Holidays | Health insurance | Life and disability insuranceSenior-level Full TimeCOAU01, United States1d ago
-
AI Security Engineer USD 165K-215KAccess Management | Adversarial Machine Learning | Authorization | Cryptography | Data exfiltrationSenior-level Full TimeUnited States - Remote R1d ago
-
Oracle Cloud Security Engineer USD 96K-223KAccess Management | CCSP | CIS Benchmarks | CISSP | Cloud GuardMid-level Full TimeUnited States - Remote R1d ago
-
Principal Classified Cybersecurity Analyst - Secret USD 103K-155KACAS | Assessment and Authorization | Continuous Monitoring | Information security | Management Framework401k matching | 9/80 work schedule | Company-Paid Holidays | Disability insurance | Health insuranceSenior-level Full TimeCOCO01, United States1d ago
-
Application Security Engineer USD 120K-195KAbuse detection | Agile | Architecture Reviews | Authentication | AuthorizationMid-level Full TimeUnited States - Remote R1d ago
-
Application Security Engineer USD 120K-174KAbuse detection | Agile | Application Firewall | Authentication | AuthorizationMid-level Full TimeUnited States - Remote R1d ago
-
Cloud Engineering Lead USD 131K-237KAccess Management | Active Directory | Amazon Web Services | Ansible | Azure Active DirectorySenior-level Full Time0462 Fort Belvoir VA, United States1d ago
-
Senior Cybersecurity Engineer USD 131K-237KAutomation | Endpoint Security | Incident Response | Knowledge Management | Mitre AttackSenior-level Full Time3369 Lorton VA, United States1d ago
-
Cybersecurity Site Reliability Engineer 3-1371 USD 92K-162KAWS | Access Management | Azure | Bash | CIS BenchmarksRemote work 100 percentMid-level Full TimePA - Philadelphia, 1701 John F … R1d ago
-
Data Engineer - Active TS/SCI USD 119K-161KAWS | AWS Lambda | Agile methodology | Amazon Redshift | Amazon S3401k match | Dental benefits | Health benefits | Life insurance | Paid time offMid-level Full TimeUSA DC Washington - 3801 Nebraska …1d ago
-
Senior-level Full Time3400 Reston VA Headquarters, United States1d ago
-
Software Engineer-Junior USD 102K-138KAWS | CI/CD | Docker | FastAPI | Flask401k match | Onsite work | Paid time offEntry-level Full TimeUSA FL MacDill AFB - 7701 …1d ago
-
Software Engineer-Junior USD 102K-138KAWS | CI/CD | Docker | FastAPI | Flask401k match | Comprehensive benefits | Onsite work 5 days | Paid time off | Wellness packagesEntry-level Full TimeDEU Germany - (APCDEU), United States1d ago
-
Cloud Solution Architect / Engineer USD 107K-195KAWS | Azure | Cloud Governance | Cloud Migration | Cloud deploymentSenior-level Full Time6314 Remote/Teleworker US, United States R1d ago