JOB TITLE: DevSecOps Engineer
Full-Time / Work from Home Flexible (Remote US - Eastern Time)
COMPANY OVERVIEW:
Ciphertext Solutions, Inc. builds secure, scalable financial technology solutions enabling digital innovation for banks, credit unions, and fintech partners. We operate in a SOC 2 and PCI DSS–compliant, cloud-native environment and specialize in payments, card issuance, embedded financial services, and partner integrations. Our engineering team values quality, automation, ownership, and continuous improvement, with a strong focus on secure software delivery and operational excellence.
JOB SUMMARY:
Ciphertext Solutions, Inc. is seeking a DevSecOps Engineer to help secure, automate, and operate the infrastructure and delivery pipelines that power our fintech platform. This role sits at the intersection of cloud infrastructure, software delivery, security engineering, and compliance. You will work closely with Engineering, Product, and leadership to strengthen security across the software development lifecycle, improve operational reliability, and support regulated environments where uptime, auditability, and data protection are critical.
This role is ideal for someone who enjoys being hands-on across infrastructure, automation, and security, and who can balance tactical operational work with longer-term platform improvements. You will contribute to secure cloud architecture, CI/CD hardening, monitoring and incident response, compliance support, and security tooling, while helping the broader engineering team adopt practical, scalable security best practices.
Cloud Infrastructure & Platform Security
· Help design, implement, and maintain secure cloud infrastructure primarily in Google Cloud Platform (GCP).
· Manage and improve infrastructure as code using Terraform and related automation tooling.
· Strengthen network security controls including firewalls, routing, segmentation, VPNs, and secure connectivity between systems and partners.
· Support certificate lifecycle management, secrets handling, and secure configuration management across environments.
· Partner with engineering teams to improve environment consistency, hardening, and operational resilience.
DevSecOps & Secure Software Delivery
· Embed security practices throughout the software development lifecycle, from design through deployment and operations.
· Improve and maintain CI/CD pipelines with a focus on secure build and release processes, automated checks, and deployment reliability.
· Help implement secure coding guardrails, dependency management, and practical application security controls aligned with OWASP guidance.
· Collaborate with developers to reduce security risk early by supporting threat modeling, security reviews, and remediation planning.
· Contribute to automation that improves delivery quality, repeatability, and auditability.
Monitoring, Detection & Incident Response
· Monitor systems and security tooling to identify vulnerabilities, suspicious activity, misconfigurations, and operational risks.
· Investigate, document, and help remediate security incidents and operational issues.
· Participate in root-cause analysis and post-incident improvement efforts to reduce repeat issues.
· Support on-call or after-hours response when urgent security or infrastructure issues arise.
Compliance, Risk & Documentation
· Support security and compliance initiatives related to SOC 2, PCI DSS, and internal control requirements.
· Help maintain policies, procedures, technical documentation, and operational runbooks related to infrastructure and security practices.
· Assist in evidence collection, control validation, and remediation tracking for audits and certifications.
· Perform risk assessments, security reviews, and infrastructure audits as needed.
Collaboration & Enablement
· Work closely with software engineers, product stakeholders, and leadership to align infrastructure and security improvements with business priorities.
· Educate team members on secure development, operational hygiene, and security awareness where appropriate.
· Contribute to engineering best practices around automation, observability, reliability, and secure system design.
· Present findings, recommendations, and status updates clearly to technical and non-technical stakeholders.
REQUIRED QUALIFICATIONS:
· Bachelor’s degree in computer science, cybersecurity, information systems, or a related field, or equivalent practical experience.
· 5+ years of experience in DevOps, DevSecOps, cloud infrastructure, security engineering, or a closely related role.
· Strong hands-on experience with Google Cloud Platform (GCP), Linux administration, and infrastructure automation.
· Professional experience with Terraform, shell scripting, Git-based workflows, and CI/CD pipelines.
· Strong understanding of networking fundamentals including firewalls, routing, subnetting, and site-to-site VPNs.
· Experience securing cloud-native environments and supporting production infrastructure in high-availability systems.
· Familiarity with security best practices across the software development lifecycle, including secure configuration, secrets management, and vulnerability remediation.
· Working knowledge of compliance and control frameworks such as SOC 2 and PCI DSS.
· Experience investigating incidents, supporting root-cause analysis, and improving operational controls.
· Strong communication skills and the ability to work effectively across engineering, product, and leadership teams.
· High degree of ownership, sound judgment, and the ability to work calmly under pressure.
PREFERRED QUALIFICATIONS:
· Experience with Palo Alto Networks firewalls or comparable network security platforms.
· Knowledge of Java-based application environments and how infrastructure/security concerns intersect with backend services.
· Familiarity with application security tooling, dependency scanning, IaC scanning, or container/image security practices.
· Experience with PKI, TLS, certificate management, and cryptographic protocols in production systems.
· Exposure to observability and monitoring platforms for logs, metrics, tracing, and alerting.
· Relevant certifications such as CISSP, CCSP, Security+, Google Cloud certifications, or similar.
· Experience working in fintech, payments, banking, or other regulated environments.
· Familiarity with incident response processes, audit readiness, and evidence-based compliance operations.
WHY JOIN US?
· Competitive compensation and a flexible remote work environment.
· Opportunity to help shape and secure a growing fintech platform used by banks, credit unions, and partners nationwide.
· Work on meaningful infrastructure, security, and compliance challenges in a highly regulated, high-impact environment.
· Collaborate with a small, talented, and highly engaged engineering team where your work will directly influence platform reliability and security.
· Strong culture of ownership, continuous improvement, automation, and practical problem-solving.
Ciphertext Solutions, Inc. is an equal opportunity employer committed to diversity and inclusion. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or any other basis protected by law.
