DevSecOps Engineer
Hybrid · Houston, Texas, United States
Job Summary
DevSecOps Engineer to own the secure delivery pipeline and platform foundations across cloud environments, embedding security controls by default and enabling development teams to ship quickly and safely. Responsibilities include designing IAM and RBAC across cloud and Kubernetes, building and enforcing Terraform modules, managing GitHub Actions pipelines, operating Kubernetes clusters (EKS/AKS/GKE or on-prem), implementing SCA/SAST/DAST and SBOM workflows, secret management, observability, incident response, threat modeling, and contributing to compliance efforts (SOC 2/ISO 27001).
Required Qualifications
- 8+ years in DevOps/Platform/SRE with a security-first mindset
- Strong IAM design (cloud + Kubernetes RBAC), OIDC/OAuth2, SSO/IdP (e.g., Okta/Azure Entra)
- Production Terraform experience (workspaces, modules, remote state, CI-driven plans/applies)
- Hands-on GitHub Actions (self-hosted runners, OIDC to cloud, environments/protections, matrix builds)
- Operating Kubernetes in production (Helm, networking, ingress, autoscaling, upgrades, backups/DR)
- Practical use of security scanners (e.g., Wiz, Trivy/Grype, Dependabot, Checkov/tfsec), and policy-as-code
- Proficient with one or more clouds (AWS), Linux, containers, and networking fundamentals
- Strong scripting in Python or Bash; Infrastructure troubleshooting and debugging skills
- Clear communication, ownership, and ability to drive cross-team initiatives
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.