Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

DevSecOps Engineer

$140k - $195k

Lockedinai

Job TitleDevSecOps EngineerCompensation$140,000 – $195,000 USD / yr## Role OverviewWe are looking for a security-minded, automation-first DevSecOps Engineer to embed security into every stage of LockedIn AI’s software development and deployment lifecycle. This is a shift-left security role — you will ensure that security is not an afterthought bolted on at the end, but a fundamental part of how code is written, tested, built, deployed, and operated across a platform serving over 1 million users.As a DevSecOps Engineer, you will sit at the intersection of development, security, and operations. Your scope spans the entire software delivery pipeline — from secure coding practices and automated security testing in CI/CD pipelines, to infrastructure hardening and container security, to runtime monitoring and incident response.The ideal DevSecOps Engineer combines strong software engineering and DevOps skills with deep security expertise. You automate everything — from static and dynamic analysis in the build pipeline to vulnerability scanning in production. You understand that security at startup speed means building automated systems that protect without slowing anyone down.## Key Responsibilities### Secure CI/CD Pipeline Engineering* Design, implement, and maintain security-integrated CI/CD pipelines that automate security testing at every stage — from code commit through build, test, staging, and production deployment* Embed SAST, DAST, SCA, and secret scanning into automated build pipelines — ensuring vulnerabilities are caught before code reaches production* Implement container image scanning, infrastructure-as-code security validation, and dependency vulnerability checks as mandatory gates in the deployment pipeline* Build automated policy enforcement that blocks deployments failing security thresholds while providing developers with clear, actionable remediation guidance### Application Security & Secure Development Practices* Champion shift-left security practices — working directly with development teams to integrate secure coding standards, threat modeling, and security reviews early in the development process* Conduct security code reviews, architecture reviews, and threat modeling sessions for new features and services — identifying risks and recommending mitigations before code is written* Develop and maintain secure coding guidelines, security patterns, and reusable security libraries that make it easy for developers to build secure features by default* Track and remediate application vulnerabilities — managing the vulnerability lifecycle from discovery through prioritization, remediation, and verification### Infrastructure Security & Cloud Hardening* Implement infrastructure security best practices across cloud environments (AWS, GCP, or Azure) — including network segmentation, least-privilege IAM policies, encryption at rest and in transit, and security group management* Secure containerized environments — hardening Docker images, configuring Kubernetes security policies (network policies, pod security standards, RBAC), and implementing runtime container security monitoring* Manage Infrastructure as Code (IaC) security — scanning Terraform, Pulumi, or CloudFormation templates for misconfigurations, compliance violations, and security risks before deployment* Implement secrets management solutions (HashiCorp Vault, AWS Secrets Manager, or similar) that eliminate hardcoded credentials and enforce secure secret rotation and access controls### Security Monitoring, Detection & Incident Response* Build and maintain security monitoring and alerting systems — implementing SIEM integration, log aggregation, and anomaly detection that provide real-time visibility into security events across the platform* Develop detection rules, correlation queries, and automated response playbooks that identify and respond to security incidents — including unauthorized access, suspicious API activity, and infrastructure anomalies* Participate in on-call security rotations and lead security incident response — coordinating investigation, containment, remediation, and post-incident review* Monitor for AI-specific security events — including adversarial inputs to LLM systems, prompt injection attempts, and unauthorized model access### Vulnerability Management & Compliance* Own the vulnerability management lifecycle — discovering, prioritizing, tracking, and driving remediation of vulnerabilities across applications, infrastructure, containers, and dependencies* Implement automated vulnerability scanning across the full stack — including application code, third-party libraries, container images, cloud configurations, and AI model serving infrastructure* Ensure security controls and practices align with relevant compliance frameworks and industry best practices — building toward formal compliance readiness as the company scales* Maintain security documentation — including architecture diagrams, risk registers, security policies, and audit trails that support compliance and organizational knowledge sharing### Security Culture, Training & Cross-Functional Collaboration* Champion a “security as code” culture across the engineering organization — making security practices automated, transparent, and developer-friendly* Develop and deliver security training and awareness programs for engineering teams — including secure coding workshops, threat modeling sessions, and security tooling onboarding* Work closely with co-founders, engineering, product, and operations to align security priorities with business objectives and product roadmap* Stay current on the latest DevSecOps tools, security vulnerabilities, attack techniques, and industry best practices — continuously improving LockedIn AI’s security posture## Required Qualifications### Experience* 3+ years of experience in DevSecOps, application security, or a combined DevOps/security engineering role* Demonstrated experience integrating security tooling into CI/CD pipelines and automating security processes* Hands-on experience hardening cloud infrastructure, containerized environments, and software delivery pipelines* Experience working cross-functionally with engineering, security, and operations teams in a fast-moving environment* Startup or high-growth environment experience preferred — comfort working in ambiguity, moving fast, and wearing multiple hats### Education* Bachelor’s degree in Computer Science, Information Security, Cybersecurity, Software Engineering, or a related field.* Relevant security certifications are a strong plus: CDP, OSCP, CKS, Security+, CISSP, or CEH — we value demonstrated security engineering skill over credentials.### Technical Skills* Strong proficiency in Python, Bash, or Go with experience writing security automation, tooling, and infrastructure code* Deep experience with CI/CD platforms (GitHub Actions, GitLab CI, Jenkins, ArgoCD, or similar) and integrating security scanning tools into automated pipelines* Hands-on expertise with containerization and orchestration security (Docker, Kubernetes) — including image hardening, pod security, network policies, and runtime security monitoring* Experience with IaC tools (Terraform, Pulumi, CloudFormation) and IaC security scanning (Checkov, tfsec, or similar)* Proficiency with security scanning tools — SAST (SonarQube, Semgrep), DAST (OWASP ZAP, Burp Suite), SCA (Snyk, Dependabot, Trivy), and secret scanning (GitLeaks, TruffleHog)* Experience with SIEM platforms, security monitoring, and log analysis (Splunk, Elastic, Datadog Security, or similar)### Strategic & Soft Skills* Security-first mindset with a developer-friendly approach: you build security systems that protect without creating friction — making the secure path the easiest path for developers* Strong written and verbal communication — you can write clear security policies, explain vulnerabilities to development #J-18808-Ljbffr Lockedinai

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the DevSecOps Engineer in New York, NY vacancy
  • $117.8k - $189k

     ...any recruiting communications or Kapitus' recruiting process in general should email ****@*****.*** The Cloud DevSecOps Engineer III is responsible for bringing the concepts of development, security, and operations together to create a more robust... 
    Suggested
    Temporary work
    Remote work
    Flexible hours
    Day shift

    Kapitus

    New York, NY
    24 days ago
  • General Dynamics Information Technology is seeking a skilled DevSecOps Software Engineer SME to deliver innovative solutions and lead a dedicated DevSecOps team. With over 15 years of experience required, you will guide teams in AWS and Azure environments, focusing on security... 
    Suggested
    Remote job
    Contract work
    Flexible hours

    General Dynamics Information Technology

    New York, NY
    3 days ago
  • Agile Defense is hiring a DevSecOps Engineer to join a specialized Agile Pod. This role focuses on creating automated software delivery tools, ensuring compliance with NIST 800-53/FedRAMP standards. Candidates need 3-5 years of experience and should be eligible for Secret... 
    Suggested
    Remote job

    Agile Defense

    New York, NY
    14 hours ago
  • We are seeking a DevSecOps Engineer to bridge the gap between web development, operations, and security. You will be responsible for developing secure web applications, managing CI/CD pipelines, and implementing robust cloud and network security practices across our infrastructure... 
    Suggested

    Yugal Tech Academy

    New York, NY
    14 hours ago
  • $147.54k - $184.43k

    Senior DevSecOps Engineer - responsible for optimizing the security of cloud infrastructure, including Kubernetes, Docker, and Terraform. Must be fluent in modern DevOps tooling, possess a keen security mindset, deep knowledge of Linux hardening and cloud deployment best... 
    Suggested
    Local area

    Framework Ventures

    New York, NY
    14 hours ago
  •  ...POSITION REQUIREMENTS**We are seeking a motivated, self-starting Intern to join our Digital Engineering team of the Applied Research Laboratory (ARL) at Penn State to perform DevSecOps-related functions around software development, cyber security, and/or cloud-native tool... 
    Internship
    Remote work

    Penn State University

    New York, NY
    4 days ago
  • The DevSecOps Engineer (Detection & Pipeline Security) plays a pivotal role at the crossroads of DevOps, Security Engineering, and Threat Detection. This position is responsible for managing secure CI/CD pipelines across high-compliance environments and ensuring detection... 
    Local area
    Shift work

    Quzara LLC

    New York, NY
    14 hours ago
  • A leading tech company is hiring a remote DevSecOps Engineer to integrate security into the DevOps pipeline. The candidate should have a solid background in software development and IT operations. Responsibilities include automating security controls and collaborating... 
    Remote job
    Flexible hours

    DevOpsChat

    New York, NY
    14 hours ago
  • DronSense is seeking a DevSecOps Engineer to join their innovative team, focusing on secure software development and deployment. This role involves working with a variety of technologies and tools to enhance the security of their drone software systems. The ideal candidate... 
    Remote work

    DevOpsChat

    New York, NY
    14 hours ago
  • A leading AI software delivery platform is looking for an experienced DevSecOps Solutions Architect to engage with customers and implement best practices for CI/CD processes. The role involves collaborating with technical teams and providing solutions to enhance deployment... 
    Remote job

    Menlo Ventures

    New York, NY
    14 hours ago
  • Overview Position: DevSecOps Engineer Location: Remote / Alexandria, VA Clearance: Preferred US Gov Secret or above clearance (not a hard requirement) Whitespace is dedicated to delivering innovative technological solutions that meet the highest standards of security... 
    Remote work

    Whitespace

    New York, NY
    14 hours ago
  • $121k - $163k

    Chartis is seeking a Senior Security Engineer to support security in cloud-native environments. The ideal candidate will have 5-8 years of hands-on experience in IAM and DevSecOps, working closely with engineering teams to ensure secure application development. Responsibilities... 
    Remote job

    Chartis

    New York, NY
    3 days ago
  • $90k - $105k

     ...days per wee onsite. Visa Sponsorship :Talan does not sponsor U.S. work permits or employment visas. We are seeking a talented DevSecOps Engineer to join our team and work on secure CI/CD, cloud, and application delivery platforms. The ideal candidate will have strong... 
    Worldwide
    Visa sponsorship
    Work visa

    Talan Group

    New York, NY
    3 days ago
  •  ...code” culture—treating infrastructure, configurations, and processes with the same discipline as software development. The Hosting Engineer will join our Platform Engineering team to design, build, and maintain the foundation of Zywave’s cloud and on‑premise hosting... 

    Zywave

    New York, NY
    14 hours ago
  • A tech-focused organization in the United States is seeking a DevSecOps Engineer to manage secure CI/CD pipelines and integrate security practices early in the development process. The ideal candidate will have a strong background in both DevOps and security, with hands... 

    Quzara LLC

    New York, NY
    14 hours ago
  • Modus21, LLC is looking for a Senior Software Engineer - DevSecOps Engineer to join their remote team. This role involves providing expertise on the Broadcom Tanzu Platform and implementing DevSecOps methodologies for the Naval Information Warfare Center Atlantic, optimizing... 
    Remote job

    Jobright.ai

    New York, NY
    3 days ago
  • Jobright.ai is seeking a remote DevSecOps Engineer to modernize a large suite of applications. The role involves developing automated build and deploy capabilities, and analyzing stakeholder needs to create effective software solutions. Candidates must possess a minimum... 
    Remote job

    Jobright.ai

    New York, NY
    3 days ago
  • About Istari Digital Istari is a digital engineering software company enabling our customers to turn the physical world into the digital to accomplish their specific mission or business objectives. Istari was founded with the vision of making open, scalable digital engineering... 
    For contractors
    Remote work
    Home office
    Flexible hours

    Istari Digital

    New York, NY
    14 hours ago
  • $80k - $100k

     ...process through our dedicated payroll system. Remember: If your communication differs from this process, it's not from Innovate. DevSecOps Engineer Location: Remote, Position: DevSecOps Engineer Reports To: FLSA: Exempt Location: Remote, Posted: 1/14/26 Embrace the... 
    Full time
    Local area
    Remote work

    Innovate!, Inc.

    New York, NY
    14 hours ago
  •  ...organizations worldwide the confidence to adopt AI, reduce data exposure, and stop AI-powered threats. The Role We are looking for a DevSecOps Engineer to join our growing DevOps group. In this hands‑on role you will be responsible of various cloud security aspects, such as... 
    Worldwide

    Varonis

    New York, NY
    2 days ago
  • Deliver simple solutions to complex problems as a DevSecOps Software Engineer SME at GDIT. Here, you’ll tailor cutting‑edge solutions to the unique requirements of our clients. With a career in application development, you’ll make the end user’s experience your priority... 
    Remote work
    Work from home
    Flexible hours

    General Dynamics Information Technology

    New York, NY
    3 days ago
  • A cutting-edge software company in the United States is seeking a skilled DevSecOps Engineer to join their Customer Experience team. The role focuses on deploying and supporting applications on their cloud-native platform, Game Warden, while ensuring security and compliance... 
    Full time

    Second Front

    New York, NY
    14 hours ago
  • We are actively recruiting for a DevSecOps Engineer for a contract to modernize a large suite of applications. The successful candidate possesses and applies expertise on multiple complex work assignments. Assignments may be broad in nature, requiring originality and innovation... 
    Full time
    Contract work
    Remote work

    Changeis

    New York, NY
    14 hours ago
  • A leading tech firm is seeking a remote DevOps Security Engineer to ensure compliance with FedRAMP and NIST standards. The role requires at least 4 years in Cloud Security or DevSecOps, proficiency with CrowdStrike, and handling multi-cloud environments. This position... 
    Remote job

    Knox Systems

    New York, NY
    14 hours ago
  •  ...of speed, flexibility, and ingenuity to strengthen and protect our nation’s vital interests. Requisition: 1429 Job Title: DevSecOps Engineer Location: Remote Clearance Level: Secret Eligible Reports To: VP of Platform Engineering Position Summary We are seeking... 
    Remote work
    Shift work

    Agile Defense

    New York, NY
    14 hours ago
  • Overview Discover exciting DevOps job opportunities and connect with 28,396 DevOps professionals. The DevSecOps Engineer position involves integrating security practices within the DevOps process, specifically in a remote capacity. Candidates are expected to have a strong... 
    Remote work
    Flexible hours

    DevOpsChat

    New York, NY
    14 hours ago
  • An established industry player is seeking a skilled professional with a strong background in cloud technologies and deployment automation. This role involves working with leading hyperscalers like AWS, utilizing tools such as Terraform and Ansible, and managing cloud-native...

    TechDigital Group

    New York, NY
    14 hours ago
  • $140k - $195k

    A tech-focused company in New York seeks a skilled DevSecOps Engineer to embed security into all development stages. This role involves designing secure CI/CD pipelines, promoting secure development practices, and implementing infrastructure security across cloud environments... 

    Lockedinai

    New York, NY
    4 days ago
  • A leading technology academy in the United States is seeking a DevSecOps Engineer to bridge the gap between web development, operations, and security. You will design and deploy secure applications, manage CI/CD pipelines, and ensure robust security practices across cloud... 

    Yugal Tech Academy

    New York, NY
    14 hours ago
  • A leading technology firm is looking for a Senior DevSecOps / Infrastructure Security Engineer to design and secure infrastructure in Google Cloud Platform. This role will focus on building secure systems from the ground up, implementing infrastructure as code using Pulumi... 
    Remote job
    Hourly pay
    Full time

    Colossus Technologies Group

    New York, NY
    14 hours ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to DevSecOps Engineer. Be the first to apply!