Senior DevSecOps – Platform Security Engineer, AWS, Kubernetes

Job Description: • Design, build, and maintain CI/CD security controls that scale across repositories and teams (reusable pipeline components, templates, and standards). • Implement Kubernetes security architecture and guardrails (RBAC hardening, workload security baselines, admission policies, network policies, and safe multi-tenant patterns as applicable). • Improve container security end-to-end: base-image strategy, vulnerability scanning, registry controls, image signing, and promotion workflows. • Operationalize vulnerability management with risk-based prioritization, measurable remediation SLAs, and dashboards/metrics (MTTR, exposure trends, top recurring root causes). • Drive developer enablement: clear documentation, lightweight design reviews/threat modeling for high-impact changes, office hours, and high-signal guidance embedded in tooling. • This role builds and runs production security systems. • You'll ship code and infrastructure, not just recommendations • You'll own reliability and outcomes for the controls you build. • You'll respond to incidents and on-call rotation related to platform security controls and pipeline reliability (scope aligned with Platform/SRE). Requirements: • 5+ years of experience in DevOps/SRE/Platform Engineering and/or Security Engineering with a strong automation and delivery focus. • Hands-on experience securing AWS environments: IAM (least privilege), network controls, encryption (KMS), and centralized logging/detection. • Strong Kubernetes security experience (EKS or equivalent): RBAC, workload hardening, and policy enforcement via admission control. • Experience integrating security into CI/CD pipelines and developer workflows (SAST, SCA, secrets scanning, container scanning, IaC scanning). • Infrastructure as Code proficiency (Terraform, CloudFormation, CDK, or Pulumi) and ability to embed guardrails into IaC workflows. • Proficiency scripting/coding (e.g., Python, Go, Bash) to build integrations, automations, and internal tooling. • Able to communicate risk and tradeoffs clearly and pragmatically to engineers; improves signal-to-noise rather than adding friction. Benefits: • A fully remote, results-based environment • Competitive salary, bonus, and equity package • 100% employer paid, comprehensive health insurance including medical, dental, and vision for you and your family • Unlimited PTO, with your manager’s approval • Flexible work environment where you manage your work day • 14 weeks of fully-paid parental leave Apply tot his job Apply To this Job