This is a remote position.
As a DevSecOps, you will be responsible for embedding security into every stage of our software development and operations lifecycle. You will build and execute the DevSecOps roadmap, enforce security best practices, and work closely with development, operations, and security teams to ensure the confidentiality, integrity, and availability of our applications and infrastructure. This role requires a balance of technical expertise, problem-solving skills, and the ability to foster a culture of security across the organization.What You'll Do
Build and execute the DevSecOps roadmap to strengthen cloud and on-prem infrastructure security.
Develop, implement, and evolve best-practice security standards, policies, and procedures.
Maintain an accurate and up-to-date inventory of cloud/DevOps assets, accounts, and controls.
Conduct regular security assessments (code reviews, vulnerability scans, threat modeling).
Ensure secure coding practices are adopted and compliance with security standards is maintained.
Lead efforts to secure Kubernetes clusters, containers, and CI/CD pipelines.
Design and automate infrastructure deployment with Infrastructure as Code (IaC).
Analyze, harden, and monitor infrastructure and development processes for vulnerabilities.
Collaborate with development, SOC, and security teams for incident response, monitoring, and compliance.
Implement and maintain security tools such as SAST/DAST within CI/CD workflows.
Drive regulatory and compliance readiness by maintaining documentation and audit evidence.
Continuously evaluate and improve DevSecOps processes, tools, and methodologies.
- Minimum 5 years of experience in DevSecOps, DevOps, or a related field with a strong security focus.
- Hands-on experience with CI/CD tools (e.g., Jenkins, GitLab CI, CircleCI).
- Strong expertise with cloud platforms (AWS, Azure, GCP) and container orchestration (Kubernetes).
- Proficiency in automation tools and scripting languages (Python, Bash, etc.).
- Solid understanding of security principles, secure coding practices, and common vulnerabilities.
- Experience implementing security within CI/CD pipelines and conducting compliance checks.
- Relevant certifications (e.g., AWS Certified DevOps Engineer, Certified DevSecOps Professional, or similar).
- Strong conceptual, analytical, and problem-solving skills.
- Excellent communication skills with the ability to collaborate across teams.
- Ability to work independently while fostering teamwork and a culture of security.
- Awareness or knowledge of IT security best practices as defined by ISO/SOC or similar.
Why Aspire
In addition to a competitive long-term total compensation with salary and performance-based bonus, we have a reward philosophy that expands beyond this.
- Be part of a (Remote is here-to stay) organization
- Work and learn from great minds
- Explore new opportunities to learn and grow everyday by attending technical and nontechnical training
- Get market exposure by working with international tech leaders
- Nursery reimbursement benefit
- Aspire Wellness Program
- Attend virtual and onsite international tech conference
- Exposure to work in an IT environment that adheres to rigorous security and compliance standards defined by ISO/ SOC.
Jordan
