Senior DevSecOps / Security Engineer – Application & Cloud (Ecommerce)
Tasks
- Conduct secure code reviews
- Configure VPC network segmentation and security groups
- Drive adoption of security best practices across teams
- Enforce secure coding standards and policy checks
- Identify and remediate application vulnerabilities
- Implement AWS Secrets Manager and Parameter Store
- Implement IAM least privilege access
- Implement OAuth2 and JWT authentication patterns
- Implement encryption in transit and at rest
- Own Terraform infrastructure as code security
- Perform OWASP Top 10 remediation
- Prevent API abuse and data exfiltration
- Secure AWS workloads on EKS ECS EC2 Lambda API Gateway S3 and RDS
- Secure CI CD pipelines with SAST DAST SCA and secrets scanning
- Secure REST and GraphQL APIs
- Secure Spring Boot APIs and microservices
- Secure build and deployment pipelines
- Support detection and response improvements
- Support threat modeling for new features
- Translate security findings into prioritized engineering work
- Triage and remediate penetration test findings
- Tune WAF bot protection and rate limiting
Perks/Benefits
- 401k matching
- Disability insurance
- Gym reimbursement
- Holiday leave
- Life insurance
- Medical/Dental/Vision insurance
- Paid time off
- Supplements allowance
- Training and professional development
- Volunteer time off
Skills/Tech-stack
API Gateway | AWS | AWS Lambda | AWS Secrets | AWS Secrets Manager | AWS Systems Manager | AWS Systems Manager Parameter Store | AWS systems | Amazon EC2 | Amazon ECS | Amazon EKS | Amazon RDS | Amazon S3 | Bot Protection | CI/CD | Code review | DAST | Encryption | GraphQL | IAM | Infrastructure as Code | JSON Web Token | JWT | Java | Microservices | OAuth2 | OWASP Top | OWASP Top 10 | Parameter Store | Penetration Testing | REST API | Rate Limiting | SAST | SCA | Secrets Manager | Secrets Scanning | Secure Code | Secure Code Review | Security groups | Spring Boot | Systems Manager Parameter Store | Terraform | Threat modeling | Top 10 | VPC | WAF | “as-code”
Education
N/A
Roles
DevSecOps | DevSecOps Engineer | Engineer | Security | Security Engineer
Related jobs
-
AWS | Adversarial Machine Learning | Amazon SageMaker | Anonymization | AzureCutting-edge AI security work | Flexible working hours | Fully remote | Global cross-functional collaboration | Opportunity to shape AI security best practicesSenior-level Full TimeIndia R11h ago
-
Staff Infrastructure Engineer — Observability USD 132K-215KAWS | Ansible | Blue-Green Deployment | Blue/green | CI/CD401k match | Accident insurance | Adoption and surrogacy reimbursement | Critical illness insurance | Dental insuranceSenior-level Full TimeUnited States - Remote R17h ago
-
Principal Enterprise Security Engineer USD 293K-343KAI Governance | Access Management | Agentic AI | Agentic AI Governance | AuthenticationEquity compensation | Health benefits | Work onsite flexibilitySenior-level Full TimeSan Mateo, CA, United States R19h ago
-
800-53 | Access Management | CIA triad | CRM | Cyber ResilienceCompany-sponsored team events | Flexible time off | Wellness resourcesSenior-level Full TimeDenver, Colorado; Los Angeles, California; Phoenix, … R20h ago
-
Principal Engineer - Cloudforce One USD 212K-292KAI workflows | Adversarial analysis | Agentic AI | Cloudflare Workers | Cyber Kill ChainCaregiving support | Equity plan | Family Benefits Programs | Health care benefitsSenior-level Full TimeHybrid R20h ago
-
Cloud Engineer (Remote) USD 110K-180KAPI Management | Active Directory | Azure API | Azure API Management | Azure BackupMid-level Full TimeOak Brook, IL, United States R22h ago
-
IAM Engineer USD 92K-150KAWS | AWS IAM | Access Control | Access Management | Active DirectoryRemote workMid-level Full TimeRemote, Florida, United States R22h ago
-
Application Security Engineer EUR 48K-60KAI threats | AWS | Application Security | Application Security Testing | AzureMid-level Full TimePortugal R22h ago
-
Senior Security Engineer- USA USD 110K-300KAI tools | Application Security | Automation | CI/CD | Cloud infrastructure401k plan | Co-working access | Disability insurance | Health reimbursement account | Health savings accountSenior-level Full TimeWashington D.C. - Remote R23h ago
-
Security Compliance Architect USD 143K-205K800-53 | AWS | Audit Readiness | Cloud Computing SRG | Cloud SecuritySenior-level Full TimeRemote - USA; San Jose, California, … R1d ago
-
CrowdStrike | Detection-as-code | Integration diagrams | Microsoft Sentinel | SIEMFlexible time off | Group dental insurance | Group medical insurance | Home internet allowance | Mobile phone allowanceSenior-level Full TimeRemote R1d ago
-
Airbyte | Cognos | DBT | Data Security | ELTAfterworks | Flexible work schedule | Health insurance | Long-term assignments | Mobility supportMid-level Full TimeAix-en-Provence, France R1d ago
-
Senior Software Engineer - Platform Services USD 119K-225K.Net Core | .Net Framework | ASP.Net Core | Azure | Azure DevOpsEmployee assistance program | Healthcare insurance | Life insurance | Paid Company Holidays | Pension/retirement matchingSenior-level Full TimeU.S. Remote R1d ago
-
Staff Security Engineer, Proactive Security USD 193K-285KAPI Security | Application Security | Authentication | Authorization | CI/CD401k with employer matching | Commuter benefits | Disability and life insurance | Family-forming assistance | Medical, dental, and vision insuranceSenior-level Full TimeUnited States - Remote R1d ago
-
Azure | CNAPP | CSPM | Cloud Security | ComplianceEmployee Committee | Health insurance | Meal vouchers | TeleworkEntry-level Full TimeCourbevoie, IDF, France R1d ago
-
Principal AI Security Specialist EUR 67K-93KAPI Integration | Agentic Automation | Cloud Security | DLP | Data Loss PreventionEducation reimbursement | Health plans | Paid time off | Parental leave | Retirement optionsSenior-level Full TimeRemote - Netherlands R1d ago
-
Senior Security Analyst (L2/L3) USD 160K-185KAWS | Attack Emulation | Check Point | ClickHouse | Compliance AuditingCorporate AI subscriptions | Corporate training | Flexible working hours | Language courses access | Paid overtime for incidentsSenior-level Full TimeGeorgia R1d ago
-
Security Engineer (Python) PHP 200K-220KAWS | CI/CD | Container Image | Container Image Scanning | DASTContinuous learning | Work from homeSenior-level Full TimeAsia R1d ago
-
Oracle Cloud Security Engineer USD 100K-150KBash | CIS Benchmarks | Cloud Guard | Cloud infrastructure | Compliance100 percent remote work | Benefits package | Career growthMid-level Full TimeUnited States - Remote R1d ago
-
Oracle Cloud Security Engineer USD 100K-150KBash | CIS Benchmarks | Cloud Guard | Cloud infrastructure | Data SafeMid-level Full TimeUnited States - Remote R1d ago
-
Cybersecurity Engineer EUR 32K-48KAPI Integration | Bash | Cloud Computing | EDR | Infrastructure as CodeDiscounts on Telia services | Extra vacation days | Health insurance | Internal training | Job shadowingMid-level Full TimeVilnius, Lithuania R1d ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Architecture Reviews | Authentication | AuthorizationMid-level Full TimeUnited States - Remote R1d ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Application Firewall | Authentication | AuthorizationMid-level Full TimeUnited States - Remote R1d ago
-
AI Security Engineer USD 100K-150KAccess Control | Access Management | Adversarial ML | Application Security | AuthorizationSenior-level Full TimeUnited States - Remote R1d ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Application Security | Cloud Security | CryptographyCareer growth | Full-time remote work | Health benefitsSenior-level Full TimeUnited States - Remote R1d ago