Skip to content
Back to jobs

Posted 1 day, 9 hours ago

TrueML

DevSecOps Engineer

Apply View on Remote OK

Roles

DevSecOps Engineer

Compensation

USD 122090 - 160000

Base salary range for U.S.-based hires: $122,090 - $160,000 per month. Benefits include flexible vacation, medical/dental/vision insurance, traditional/Roth retirement savings, company-paid disability and life insurance, Flexible Spending Account & Limited FSA, parental leave, volunteer and voting time off, wellness platform access, PerkSpot discounts, and remote work.

Salary period
monthly
Location basis
U.S. geographic labor market tiers based on primary work location along with relevant skills, experience, and qualifications.

Benefits

  • Flexible vacation
  • Medical/dental/vision insurance
  • Traditional/Roth retirement savings options
  • Company-paid disability and life insurance
  • Flexible Spending Account & Limited FSA
  • Family-friendly parental leave
  • Volunteer and voting time off
  • On-demand wellness platform access for you and 5 friends and family
  • PerkSpot discount program for 900+ merchants nationwide
  • Remote work

Tech stack

ISO 27001 AWS IAM container security Generative AI Prisma Cloud GitHub Actions Amazon Gateway DAST CISSP IaC Kubernetes Python SANS GIAC Amazon EKS SAST Amazon VPC Amazon ECS AWS CASP CloudFormation Amazon S3 Jenkins PCI DSS SCA Terraform KMS Infrastructure as Code Azure Devops GitLab CI Wiz Docker OWASP JavaScript WAF

Required

AWSAWS IAMAmazon VPCAmazon ECSAmazon EKSAWS LambdaAmazon S3Amazon API GatewayWizPrisma CloudTerraformCloudFormationKubernetesDockerPythonJavaScriptOWASPSASTSCADASTInfrastructure as Code (IaC)Container SecurityGitHub ActionsJenkinsGitLab CIAzure DevOpsCISSPSANS GIACCASPPCI DSSISO 27001Amazon KMSWAF

Location

Lenexa, Kansas

Work setup

Employment
full-time
Level
Senior
Remote policy
Remote-First environment; flexibility outside standard business hours and occasional local or international travel may be necessary for global operations support, company meetings, training, offsites, and collaborative projects. Maintain reliable internet connection and professional work environment when working outside a company office.
Remote scope
worldwide
Travel
Occasional local or international travel may be necessary for global operations support, company meetings, training, offsites, and collaborative projects.

Role details

Responsibilities

  • Embed security controls and scanners (SAST, SCA, DAST, IaC, Container Security) into CI/CD pipelines (GitHub Actions, Jenkins, GitLab CI, Azure DevOps)
  • Design and maintain automated security workflows across build, test, and deploy stages
  • Implement security gates, policy enforcement, and compliance checks within pipelines
  • Secure cloud-native architectures across AWS (IAM, VPC, ECS/EKS, Lambda, S3, API Gateway)
  • Integrate and operationalize CNAPP/CSPM tools (e.g., Wiz, Prisma Cloud)
  • Enforce least privilege access, secrets management, and runtime protections
  • Define and maintain security policies for AWS environment focusing on containerized workloads (EKS/ECS) and serverless architectures (Lambda)
  • Build real-time monitoring and automated remediation for AWS resources to stay audit-ready for PCI and ISO 27001
  • Perform deep-dive threat modeling exercises on applications and designs
  • Develop security standards for Generative AI and use AI-powered tools to explore attack surface while defending against AI-driven threats
  • Secure Infrastructure as Code (IaC) templates (Terraform/CloudFormation) and manage cloud primitives like IAM, KMS, and WAF

Requirements

  • 7-10 years in software engineering, DevOps, or cloud engineering
  • 3+ years in a DevSecOps focused role
  • Deep mastery of cloud security, vulnerability analysis, and incident response
  • Demonstrable expertise in the AWS ecosystem
  • Highly proficient in securing Infrastructure as Code (Terraform) and containerized environments
  • Top-tier industry certifications such as CISSP, SANS GIAC, or CASP
  • Firm grasp of compliance frameworks like PCI and ISO 27001
  • Familiar with OWASP
  • Proficient with modern security tooling
  • Ability to secure complex API integrations and data protection layers
  • Understanding of evolving landscape of AI regulations
  • Technical curiosity to investigate how threat actors use AI to bypass traditional controls
  • Collaborate by translating complex InfoSec projects into simple, maintainable tasks
  • Ability to propose methodologies to tackle legacy security debt and convince stakeholders of value of security-first design

Application

Please mention the word HONOR and tag RMmEwMTo0Zjg6YzAxNToyMGQ3Ojox when applying to show you read the job post completely (#RMmEwMTo0Zjg6YzAxNToyMGQ3Ojox).

Portfolio
not required
GitHub
not required
Cover letter
unclear
Apply flow
ats

Company context

Create better customer experiences for distressed borrowers and ensure nobody gets locked out of the financial system.

Product
Machine learning-driven digital-first financial software for distressed borrowers
Industry
Financial software / financial services

Description

Why TrueML? TrueML is a mission-driven financial software company that aims to create better customer experiences for distressed borrowers. TrueML’s approach uses machine learning to engage each customer digitally and adjust strategies in real time in response to their interactions. What you will do: We are seeking a Sr. Security Engineer to lead the integration of security across the software development lifecycle (SDLC). This role sits at the intersection of engineering, cloud infrastructure, and application security, driving automation, scalability, and secure-by-default development practices. You will design and implement security-first CI/CD pipelines, embed automated security testing, and partner with engineering teams to ensure applications are built, deployed, and operated securely—at scale. Key Responsibilities: - Embed security controls and scanners (SAST, SCA, DAST, IaC, Container Security) into CI/CD pipelines (GitHub Actions, Jenkins, GitLab CI, Azure DevOps) - Design and maintain automated security workflows across build, test, and deploy stages - Implement security gates, policy enforcement, and compliance checks within pipelines - Secure cloud-native architectures across AWS (IAM, VPC, ECS/EKS, Lambda, S3, API Gateway) - Integrate and operationalize CNAPP/CSPM tools (e.g., Wiz, Prisma Cloud) - Enforce least privilege access, secrets management, and runtime protections - Define and maintain security policies for AWS environment for containerized workloads (EKS/ECS) and serverless architectures (Lambda) - Build real-time monitoring and automated remediation for AWS resources to stay audit-ready for PCI and ISO 27001 - Perform deep-dive threat modeling exercises on applications and designs - Develop security standards for Generative AI using AI-powered tools to explore attack surface while defending against AI-driven threats - Secure Infrastructure as Code (IaC) templates (Terraform/CloudFormation) and manage IAM, KMS, and WAF What you bring: - 7-10 years in software engineering, DevOps, or cloud engineering; 3+ years in a DevSecOps focused role; cloud security, vulnerability analysis, and incident response - Expertise in AWS ecosystem; proficient in securing Infrastructure as Code (Terraform) and containerized environments - Top-tier industry certifications such as CISSP, SANS GIAC, or CASP; grasp of compliance frameworks like PCI and ISO 27001 - Familiar with OWASP; able to secure complex API integrations and data protection layers - Understand evolving landscape of AI regulations and how threat actors use AI to bypass controls - Ability to translate complex InfoSec projects into maintainable tasks - Ability to propose methodologies to tackle legacy security debt and communicate security value

Similar jobs

  • Loading similar jobs...