Cloud DevSecOps Engineer
Salary: Open + Bonus
Location: Chicago, IL or Coppell, TX
Hybrid: 3 days onsite, 2 days remote
*We are unable to provide sponsorship for this role*
Qualifications
- 7+ years’ experience with Security Engineering activities and testing.
- 5+ years’ experience with DevOps processes
- 5+ years’ experience with AWS architecture and services.
- Advanced knowledge in identity and authentication architectures across cert-based, OAuth2/OIDC, IAM, AD, k8s, and Kerberos implementations
- Advanced knowledge and experience designing secure CI/CD and IaC ecosystems with Terraform, Ansible, and Jenkins at enterprise scale.
- Proficiency providing operational and engineering support for one or more of the following: CyberArk, HashiCorp Vault, Active Directory Certificate Services (ADCS), HSMs, and Public Key Infrastructure (PKI).
- Expertise in DevOps and DevSecOps practices and tooling. Hands-on expertise across CI/CD pipeline development and automation tools such as Jenkins, GitHub Actions, or GitLab CI, leveraging infrastructure-as-code frameworks (Terraform, Ansible) and scripting languages (Python, Groovy, Bash, GoLang) to embed security controls throughout the software development lifecycle.
- Expert level knowledge of privileged access management methodologies and techniques for on-prem and Cloud implementation.
Responsibilities
- Maintain Hybrid Infrastructure Integrity Ensure the operational integrity of cloud and on-premises infrastructure throughout its lifecycle, including patching, version control, and system upgrades. Establish and enforce security as code principles throughout the environment in alignment with company standards.
- Manage ongoing critical cloud service rollouts and automation Lead end-to-end deployment of mission-critical cloud services while developing and maintaining automation pipelines that streamline provisioning, configuration, and compliance enforcement across cloud environments.
- Assist in the deployment of new technologies and infrastructure aligned with security strategy Partner with architecture and engineering teams to evaluate, pilot, and deploy emerging cloud technologies, ensuring all implementations adhere to established security frameworks, organizational risk tolerance, and long-term strategic vision.
- Support, grow, and advance current processes and tools Continuously assess existing security processes and toolsets, driving improvements that mature the organization's cloud security posture through automation, documentation, and operational efficiency. Develop and implement system improvements that expand automated integrations and accelerate detection and remediation of functional and technical issues.
- Demonstrate in-depth knowledge of security controls and standards across cloud security, architecture, and security testing Apply expertise in industry frameworks (CIS, NIST CSF, CSA CCM) to design, implement, and validate security controls spanning cloud architecture, identity and access management, data protection, and security testing including vulnerability assessments and penetration testing.
