DevSecOps Engineer
$160kNew Charter Technologies, Llc
**We believe talent deserves a human touch. Your application will be read by an actual person who’s excited to discover the real you.****About the Role**We are looking for an DevSecOps Engineer to join our product engineering team. You will serve as the named security function for a team building internal tooling for a portfolio of managed service provider companies, with a roadmap toward a public-facing SaaS product. This role sits inside engineering and works closely with developers and information security day to day.The team you are joining is experienced and moves quickly. The right person for this role is comfortable operating as a peer to strong engineers, contributing practical security judgment and ensuring overall security of our solutions. As our product matures toward public availability, you will help ensure our security posture scales with it.You should be comfortable operating in an exploratory, innovation-oriented environment where not everything will become production software. Right-sizing your security posture to the actual risk is a core expectation of this role.**Key Responsibilities****Embedded Security Partnership**• Serve as the primary security resource for engineering teams in direct close coordination with information security teams, advising on design decisions, authentication patterns, and API security as features are built rather than after the fact• Conduct lightweight, developer-friendly threat modeling for new features and services, right-sized to the actual audience and risk profile (internal vs. public-facing)• Lead collaboration between engineering and information security teams through architecture and code reviews with actionable, specific guidance that helps teams ship, not slow down• Responsible for remediation and enforcement of security standards as set forth by the information security team• Define and maintain a tiered security standard that distinguishes expectations for internal tooling vs. production SaaS vs. public-facing products• Engage constructively with the enterprise security organization, translating between compliance and governance language and the engineering team's operational reality**Tooling & Automation**• Responsible for adherence to GitHub Advanced Security (GHAS) configuration and security standards through ongoing tuning across code scanning, secret scanning, Dependabot, and security campaigns within GitHub Enterprise• Integrate security tooling into CI/CD pipelines as policy-as-code feedback loops, not manual gates• Develop and maintain GitHub Actions workflows with reusable, security-enforcing components• Drive remediation velocity metrics and coverage reporting across engineering teams**Cloudflare & Azure Security**• Collaborate with information security teams to assess and secure workloads across both Cloudflare and Azure, including Cloudflare Workers, Access policies, WAF, and Zero Trust for public-facing infrastructure, and Azure security controls (Managed Identities, Key Vault, Defender, IAM) for internal and opco-facing services• Apply platform-appropriate security controls as our architecture spans both environments, calibrating to the risk profile of each workload• Evaluate and harden authentication flows, API security patterns, and service-to-service trust boundaries across Cloudflare and Azure environments• Contribute to container and cloud workload security as infrastructure patterns evolve**Development Contributions**• Contribute to internal security tooling, automation, and integrations using Python and/or Go• Build security utilities such as vulnerability aggregation pipelines, policy enforcement tooling, or developer-facing security dashboards• Collaborate with information security and engineering teams on secure service design patterns, OAuth 2.0/OIDC flows, and API security controls**Compliance & Risk**• Support SOC 2 readiness as the product matures toward public customers, mapping application security controls to Trust Services Criteria• Triage and prioritize vulnerability findings based on actual business risk rather than CVSS scores alone, distinguishing real issues from noise in a SaaS-native environment• Partner with GRC and the enterprise security organization on evidence collection and audit preparation, without allowing compliance prep to dominate engineering time**Required Qualifications**• 7+ years in application security, secure software development, or a closely related discipline• Demonstrated ability to operate as an embedded security partner within engineering, working side by side with developers• Deep, hands-on experience with GitHub Advanced Security or equivalent security tooling, including code scanning, secret scanning, Dependabot, and security policy enforcement within GitHub Enterprise• Experience with threat modeling methodologies (STRIDE, PASTA, or similar) applied to real-world systems, with instinct for right-sizing the process to actual risk• Proficiency in Python and/or Go, comfortable reading, writing, and reviewing production-grade code• Strong command of OWASP Top 10, common vulnerability classes, and secure design principles• Experience securing SaaS or product engineering workloads rather than enterprise IT or perimeter-focused environments• Experience securing workloads on Cloudflare (WAF, Access, Zero Trust, Workers) and Microsoft Azure (IAM, Managed Identities, Key Vault, Defender), with demonstrated depth in one and working familiarity in the other• Solid understanding of container security concepts with hands-on Docker experience• Excellent communication skills, with the ability to translate complex security risk into developer-actionable guidance and executive-level business context• Familiarity with SOC 2 Trust Services Criteria and how application security controls map to compliance requirements**Expected Compensation to be $160k and up Dependent on Experience.****Preferred Qualifications**• Experience with DAST tooling (e.g., OWASP ZAP, Burp Suite Pro) integrated into automated pipelines• Familiarity with infrastructure-as-code security scanning (Terraform or similar)• Experience with API security standards including OAuth 2.0, OpenID Connect, and API gateway security patterns• Relevant certifications such as CSSLP, GWEB, or OSCP• AI/LLM security awareness, with a practical understanding of how AI-powered applications introduce unique security considerations including prompt injection, data exposure, and model supply chain risks• Familiarity with MCP (Model Context Protocol) server architectures and the security implications of LLM-to-tool integrations• Exposure to OWASP Top 10 for LLM Applications or similar emerging AI security frameworks**What Success Looks Like**In this role, success means developers ship more secure code faster, not slower. You earn trust by speaking the language of engineering, making the secure path the easy path, and knowing when to raise a flag versus when to let something ship. You apply proportionate security judgment across a spectrum from exploratory internal tooling to production SaaS, and you never mistake compliance theater for actual security.The ideal candidate brings the depth to identify serious security issues, the engineering credibility to help teams fix them at scale, and the pragmatism to distinguish real risk from noise in a SaaS-native, developer-first environment.**Who We are:**At New Charter, we’re building a caliber of business the IT industry hasn’t yet seen. We are serving small-to-medium sized businesses in 10+ industries across #J-18808-Ljbffr
- ...DevSecOps Engineer Location Westminster, CO Job Code 2120 of Openings 1 Apply Now ( DCCA is a veteran-owned IT business specializing in providing innovative solutions to various government agencies and commercial enterprises since 1982. DCCA is proud to offer...SuggestedFlexible hours
$145k
...Senior DevSecOps Engineer For more than 65 years, we've turned big ideas into solutions that help protect homes, strengthen businesses and build a more resilient, efficient, sustainable energy future. Ready to Power a Smarter World with us? As a Senior DevSecOps...SuggestedTemporary workWork experience placementFlexible hoursShift work$120k
...Apply Job Type Full-time Description Dev Ops Engineer About TrackVia TrackVia is a low-code application platform headquartered in Denver, Colorado. We help enterprises and government organizations build the operational systems they run their...SuggestedFull timeWork at office$75k
Overview This role will have client facing responsibilities that encompass Application security and DevSecOps engineer skill sets. This role will be supporting DevSecOps tools including Splunk, Docker Pro, IBM Sterling Connect renewal, New Relic, Cloudbees, Symantec VIP...SuggestedPermanent employmentWork experience placementLocal areaWorldwide$82.1k - $172.4k
## Senior Infrastructure/DevSecOps EngineerAurora, CO, USApply NowFind out how well you match with this jobJob ID324382Job Title: Senior... ...:**### This position is for a **Senior** **DevSecOps Engineer**. You will be working closely with a talented team to deliver...SuggestedContract workWork experience placementWork at officeRemote workFlexible hours$115k - $175k
Senior Infrastructure/DevSecOps Engineer (TS/SCI with CI Poly) {S} Job Category : ENG Requisition Number : SENIO003006 Posted : August 8, 2025 Full-Time On-site Locations Showing 1 location Aurora, CO 80011, USA Description ARKA Group L.P. (“ARKA”) is an advanced...Full timeTemporary workWork experience placementWork at officeRemote workVisa sponsorshipRelocation packageFlexible hours- CACI International Inc. is seeking a Senior Infrastructure/DevSecOps Engineer in Aurora, CO, to join a talented team. This role entails delivering complex software applications and requires a strong background in Kubernetes, CI/CD, and cloud platforms like AWS or Azure...
- Lynx is seeking a Principal DevSecOps Engineer in Denver, CO, who will support secure software development and deployment for military aircraft platforms. The successful candidate will lead in creating resilient software delivery pipelines and collaborate with a multi-...Remote work
- A leading technologies company in Aurora is seeking a Senior Infrastructure/DevSecOps Engineer to deliver complex software solutions supporting national security. The ideal candidate will have 5+ years of experience, proficiency in Kubernetes, and the necessary security...Relocation packageFlexible hours
- Lockheed Martin in Littleton, Colorado, is seeking a skilled software developer with substantial experience in object-oriented programming and cloud platforms. This role supports the Erebus Program, offering cutting-edge intelligence applications. The ideal candidate will...
- Sierra Nevada Corporation is seeking a Senior Systems Security Engineer in Lone Tree, CO. The ideal candidate will design and implement secure systems while leading security practices within a collaborative environment. The role requires a Bachelor's degree, CISSP certification...Remote job
- Dormont Manufacturing Co in Lone Tree, Colorado seeks a dedicated DevSecOps Engineer to enhance system security across development and production environments. You'll work closely with development and operations teams to embed security best practices throughout the software...
- CACI International Inc. is seeking a Senior DevOps Engineer in Denver, CO, to join a high-performing Agile team focused on geospatial intelligence applications. The role involves leading CI/CD implementations, mentoring engineers, and supporting national security missions...Flexible hours
- Prattwhitney in Aurora, Colorado is seeking a Principal Platform DevSecOps Engineer to design and develop cloud-based infrastructure supporting national critical assets. The role requires leading the integration of security measures into the platform and collaborating...
- A leading consulting firm is seeking a DevSecOps Engineer in Colorado to support the U.S. Space Force. In this role, you will manage software development pipelines, incorporate cloud resources, and enhance automation to support innovation. Key qualifications include experience...
$125k - $275k
...making a positive impact on its customers, employees, and communities. The Role We are looking for experienced Senior DevOps Engineers with a passion for automating deployments and scaling and optimizing the CI/CD environments. \n What You'll Do Implement...Work at officeLocal areaRemote workWork from homeFlexible hours- ...Description Keeper Security is hiring a Senior DevOps Engineer with direct experience building and managing infrastructure in IL5-compliant environments. This is a 100% remote position, with the opportunity to work a hybrid schedule for candidates based in the El Dorado...Temporary workRemote work
$56.65k - $110k
...DevOps Engineer Apply Online Location Lubbock, Texas | Lakewood, Colorado | Troy, Michigan | Remote Responsibilities ~ CI/CD & Build Management Enhance GitHub Actions workflows and branching strategies. Optimize .NET builds and MSBuild...Local areaRemote work$62k - $141k
...find a position that is tailor made for your mix of development, engineering, and communication skills? As a DevOps engineer on our team,... ..., you will support the building and maintenance of a DevSecOps pipeline using the latest open-source technologies. You will use...Full timeContract workPart timeLocal areaRemote work$140k - $170k
...DevOps Engineer Location: Denver, Colorado Compensation: $140,000 - $170,000 base salary (depending on experience) We are looking for an Azurefocused DevOps Engineer to support the design, automation, and operation of cloudnative platforms. This role plays...$69.1k - $141.5k
...Job Title: DevOps Engineer - Mid Job Category: Engineering Time Type: Full time Minimum Clearance Required to Start: TS/SCI... ...Intelligence Agency (NGA). Help design and maintain CI/CD and DevSecOps solutions that enable secure, reliable, and efficient software...Full timeContract workWork experience placementFlexible hours- Job Description Title: DevOps Developer Location: Aurora, CO McIntire Solutions is seeking a DevOps Developer to support our Customer. Responsibilities include, but are not limited to: Write production backend applications Ship and run services in cloud environments, with...Local area
- ...DevOps Engineer Absolute Business Solutions Corp (ABSC) is not just another tech company. We're a community of innovators, engineers, analysts and business professionals working together with our customers to tackle the most complex challenges. For more than 20 years...Flexible hours
- ...Sr DevOps Engineer Local to Denver only - 4-5 days a week at client site office Request for 4 Sr. Devops Engineers Local to Denver only - 4-5 days a week at client site office Dev Ops Amazon EKS ISTIO-Service Mesh Tuning CPU / Memory ArgoCD & Rollouts...Work at officeLocal areaShift work
- ...AWS DevOps Engineer III Charter Communications Location: (3/2 Hybrid Schedule Days on/Off site) OPEN TO DENVER & Charlotte (Denver preferred) Start ASAP Length: End of year + extension (up to 18 months) Need to be willing to work on-call rotation approximately...Immediate startFlexible hours
- ...Job Role: DevOps Engineer Location: Denver, CO 80210 (Onsite from Day 1) Duration: 3 Months Education: Bachelor's or Master's Degree in Engineering Role Overview: We are seeking an experienced Technology Lead with strong DevOps and .NET expertise...Work at office
- ...improvement we make helps workforce professionals better serve the communities that depend on them. We're looking for a DevOps Engineer who enjoys solving complex infrastructure challenges, automating everything possible, and building secure, scalable cloud...For contractorsSecond jobWork at officeRemote work
$170k - $190k
...Senior DevOps Engineer US Citizenship is required. An active TS/SCI is required. An active CI Polygraph is required. Security+... ...through new emerging technologies and the use of DevOps/DevSecOps tools and automation to streamline processes, enhance collaboration...Work experience placement- ...DevOps Engineer Apex Systems is currently looking for multiple DevOps Engineers to join a well-established client in Denver! Location: Denver, CO Estimated Duration: Through 2022 with high likelihood to extend or convert Compensation: Competitive, Dependent...
$110k - $150k
...the expectations to be in office at least 3 days a week for collaboration and connection. Why this Role Matters As a Senior DevOps Engineer, you will play a critical role in delivering secure, reliable, and scalable software to our customers. By building and optimizing...Work experience placementWork at office3 days per week
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to DevSecOps Engineer. Be the first to apply!

