Title: DevSecOps Engineer
Job Type: Full-Time
Location: Remote
Company Description:
Mechanized AI is at the forefront of AI innovation, leveraging cutting-edge technology to transform legacy systems into modern, efficient, and scalable solutions. We work with enterprise clients to breathe life into their existing software, ensuring that they can meet the demands of today’s fast-paced, digital landscape. Our team thrives on solving complex challenges and delivering innovative solutions. As an organization, we are committed to fostering an environment that encourages creativity, collaboration, and continuous learning.
Job Summary:
We are seeking an experienced DevSecOps Engineer to join our growing team.
The ideal candidate will have a background in both development and security operations, with a keen understanding of modern DevOps practices. This role is critical in ensuring the security, reliability, and efficiency of our software development and deployment processes.
Key Responsibilities:
- Design, implement, and manage CI/CD pipelines with a focus on security at every stage
- Automate security testing and integrate security tools into the development workflow
- Monitor, detect, and respond to security threats and vulnerabilities in a timely manner
- Collaborate with development, QA, and IT teams to ensure security best practices are embedded throughout the software lifecycle
- Develop and maintain security policies, procedures, and documentation
- Conduct regular security audits, assessments, and code reviews
- Provide training and guidance to team members on secure coding practices and DevSecOps methodologies
- Implement and manage infrastructure as code (IaC) using tools such as Pulumi, Terraform or CloudFormation
- Ensure compliance with industry standards and regulations (e.g., GDPR, HIPAA)
- Stay current with the latest security trends, vulnerabilities, and technologies to proactively address potential threats
Required Skills & Experience:
- Bachelor’s degree in computer science, software engineering or related field
- 4+ years of experience in DevSecOps, Cloud Engineering, or DevOps with a security focus
- Strong knowledge of AWS, ideally certified to the associate level (AWS Solutions Architect Associate or AWS SysOps Associate)
- Proficiency in scripting languages such as Python, Bash, or PowerShell
- Experience with CI/CD tools (e.g., AWS CodePipeline, Jenkins, GitLab CI, CircleCI)
- Familiarity with security tools and practices (e.g., OWASP, SAST, DAST)
- Understanding of network security, firewalls, VPNs, IDS/IPS, and endpoint security
- Proficiency in Identity and Access Management (IAM) roles and policies and S3 bucket policies
- Strong analytical and problem-solving skills, with ability to propose innovative solutions and troubleshoot issues
- Ability to work independently and as part of a collaborative team in a fast-paced environment
- Effective written and oral communications skills – C1/C2 (advanced/proficient) level English is required
Preferred Qualifications:
- Experience with monitoring and logging tools (e.g., Prometheus, Grafana, ELK stack)
- Knowledge of compliance frameworks and regulations
- Familiarity with Machine Learning and AI security considerations