Sr Cybersecurity DevSecOps Engineer

The Sr. Cybersecurity DevSecOps Engineeronthe CIAM delivery teamis responsible forintegrating security practices into the software delivery lifecycle, securing CIAM platform configurations and integrations, and ensuring that identity services are delivered in a resilient, compliant, and automated manner. The role supports team leadership by applying secure DevOps processes and collaborating with architecture, development, operations, product, and security teams to operationalize security controls across CI/CD pipelines, infrastructure, and identity flows.

This is ahands-onengineering role focusedonenablement, automation, and risk reductionrather than policydevelopment.

Tojoin our dynamic team, we require candidates to be residents of WA,OR,ID, AZ, TX, GA, SC, NC,CAor VA.Ifyou’relocatedin Washingtonstate and within a reasonable driving distance from Tukwila, we arerequestingthat you come into our HQonTuesdays & Wednesdays.  For those candidates that live outside the commute distance of TFC and in any of our approved remote work locations, this role will be remote. Remote or onsite, we are committed to ensuring you are fully engaged and included in our collaborative environment

WHAT YOU’LL DO:

• Team Support:Guidedevelopers and engineersonsecure engineering practices and helpsupportadoptionof security best practices.

• Platform Strategy:Contribute to roadmap and strategy development for platform and infrastructurecomponents.

• CIAM Security:Secure configurationand deployment of SaaS CIAM environments. Validate tenant configurations against enterprise security standards.

• Security Integration:Ensure that security practices are embedded into the software development lifecycle (SDLC) from design through deployment.

• Secure Design:Ensure that security checks are consistently applied and that vulnerabilities are identified and addressed early in the development process.

• Documentation:Develop clear security architecture documentation, data flow diagrams, and process artifacts.

• Infrastructure as Code:Lead the design and implementationof secure infrastructure using Infrastructure as Code (IaC) toolssuch asTerraform, Ansible, or Kubernetes to create and manage infrastructure that is both scalable and secure. 

• Automation:Build tools, scripts, and policyascode solutions to automate security enforcement across CI/CD pipelines.

• Monitoring:Define logging, monitoring, and alerting requirements to strengthen detectionand operational response.

• Compliance:Support GDPR, HIPAA, and internal compliance requirements across CIAM systems and workflows.

• Risk Management:Conduct risk assessments and implement controls that reduce exposure across delivery processes.

• Security Culture:Promote shared responsibility for security across development and operations teams.

• Continuous Improvement:Identifyopportunities to enhance security posture, tooling efficiency, and platform resilience.

• On-Call Support & Incident Response: Provide on-call support as needed and participate in the Security Incident Response Team to ensure quick resolution of security events.

WHAT YOU’LL GAIN:

• Opportunities to directly influence the security of enterprise identity and access management.

• A collaborative environment with modern tools across automation,IaC, CI/CD, and cloud platforms.

• Cross functionalpartnerships with architects, developers, and security professionals.

• Engaging work that involves solving complex technical security challenges.

• Continuous learning in identity protocols, cloud technologies, and enterprise security frameworks.

QUALIFICATIONS:

Minimum Qualifications:

• Bachelor’s degree in computer science or a related field, or equivalent experience.

• Minimum 5 years of experience in DevSecOps, security engineering, orrelateddiscipline, including experience supporting or leading engineering teams.

Desired Qualifications:

• Proficient inproblem solving, leadership, and communicationskills.

• Knowledge of identity and authenticationconcepts (OAuth2, OIDC, SAML,token-basedauthentication, sessionsecurity, API authorization).

• knowledgeof security principles such as threat modeling, risk assessment, and vulnerability management.

• Ability to stay current with emerging technologies through work experience or continued learning.

• Advanced scriptingproficiency(Python, Bash).

• Experience with CI/CD platforms such as Jenkins or GitLab CI.

• Knowledge of cloud platforms (AWS, Azure, GCP) and core network/applicationsecurity principles.

• Familiarity with security frameworks such as NIST or ISO 27001.

• Experience securing SaaS orcloud nativeplatforms.

• Experience working in Agile environments.

​

JOIN THE JOURNEY: