Senior DevSecOps Engineer

Stand Together is a philanthropic community that helps America's boldest changemakers tackle the root causes of our country's biggest problems, from education to the economy, broken communities, and toxic division, among dozens of other pressing issues. We provide our partners with access to resources including funding, thought leadership, a network of peers, and a playbook for applying proven principles to transform lives and society.


Stand Together is seeking a highly skilled and security-minded Senior DevSecOps Engineer to help us design, build, and secure our cloud infrastructure and software delivery pipelines. You'll partner with software, data, cyber, and cloud engineering teams to create a secure, scalable, and resilient platform that supports solutions to some of society's biggest challenges.


This role blends DevOps engineering excellence with security-first thinking -you'll embed security controls directly into our CI/CD processes, drive compliance automation, and champion best practices for cloud security across all three of the major cloud providers.


At Stand Together, you'll help build secure, scalable solutions that empower people and organizations to address society's toughest problems. If you thrive at the intersection of cloud engineering and security innovation , we want to hear from you.

How You Will Contribute

• Cloud & Infrastructure Security
• Establish and enforce cloud security standards, identity & access management (IAM) policies, and network security controls across AWS and Azure.
• Implement continuous compliance and security monitoring aligned to the AWS Well-Architected Framework and industry standards (CIS, NIST, ISO).
• Design automated guardrails for vulnerability management, patching, and secrets management.

• DevOps & Automation
• Architect and maintain CI/CD pipelines with built-in security testing (SAST/DAST), artifact signing, and policy enforcement.
• Develop Infrastructure-as-Code (IaC) using Terraform, CloudFormation, CDK, or Ansible to ensure repeatable, secure deployments.
• Build and maintain containerized environments (Docker, Kubernetes, ECS, Fargate) with hardened images and runtime security controls.

• Collaboration & Leadership
• Partner with software, data, and business teams to integrate security best practices into application design and deployment.
• Act as a trusted advisor on cloud security strategy, incident response, and disaster recovery.
• Coach engineers on secure coding, DevSecOps patterns, and operational excellence.
• Able to clearly communicate the value of new initiatives to secure cross-functional adoption
• Enthusiasm to contribute to Stand Together's vision and principled approach to solving problems, and a commitment to stewarding our culture, which champions values including transformation and innovation, entrepreneurialism, humility, and respect.

What You Will Bring

• Experience: 5+ years in Cloud/DevOps/Platform engineering with a strong focus on security and automation

• Cloud Expertise: Deep knowledge of AWS services (EC2, RDS, DynamoDB, Lambda, SQS/SNS, ECS/ECR, Security Hub, etc.) and equivelant technologies in Azure and GCP

• Security Knowledge:
• Strong understanding of IAM, network security, encryption (KMS), key rotation, and secrets management
• Experience with vulnerability scanning tools (e.g., Security Hub, Inspector, Aqua, Prisma, or similar) and compliance frameworks.
• Familiarity with container security and supply chain security practices.

• Automation & IaC: Proficiency with Terraform, Ansible, Cloud Development Kit (CDK), or similar
• Demonstrated proficiency in threat detection, log aggregation, and incident response using Splunk and alternative SIEM tools

• Programming & Scripting: Proficiency in Python or another high-level language for automation and custom tooling

• CI/CD & Monitoring: Experience with Jenkins, GitHub Actions, CodePipeline, or similar, plus observability tools (Prometheus, Grafana, ELK/EFK)

• OS & Networking: Strong Linux/Unix command-line skills and solid grasp of TCP/IP, DNS, VPNs, firewalls, and load balancing

Stand Out Candidates Will Bring

• AWS Certified Solutions Architect, Security Specialty, or DevOps Engineer - Professional
• Experience with Zero Trust principles, cloud-native application security, or serverless security
• Background in incident response or security operations

What We Offer

• Competitive benefits: Enjoy a 6% 401(k) match with immediate vesting, flexible time off, comprehensive health and dental plans, plus wellness and mental health support through Peloton and Talkspace.
• A meaningful career: Join a passionate community of over 1,300 employees dedicated to improving lives and driving innovative solutions to complex social challenges.
• Commitment to growth: Thrive in a non-hierarchical environment that empowers employees to discover, develop and apply their unique talents.
• Competitive compensation: Our approach rewards the value you create through competitive salaries and bonus opportunities, allowing you to share in the success you help drive.

Our Values: Working for an organization within the Stand Together philanthropic community is different from many other places. The culture is deeply rooted in Principle Based Management® (PBM®), a framework guided by the principles that drive human progress, such as dignity, openness, and bottom-up empowerment. PBM® empowers employees to be entrepreneurial, to innovate, and to continually drive transformation.


We believe diversity fuels creativity, broadens knowledge, and helps drive success. That is why we're proud to be an Equal Opportunity Employer and strive to treat all employees and applicants with honesty, dignity, and respect.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses and identifying potential inconsistencies or verification signals in application materials based on available information. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.