Senior DevSecOps Engineer

Your Impact We are looking for a Senior DevSecOps Engineer who will contribute to the success of the R&D Team, applying their expertise in DevSecOps to support the achievement of team and company goals and deliver innovative, reliable solutions. In this role, the successful candidate will collaborate effectively with colleagues and cross-functional teams, demonstrate strong problem-solving and decision-making skills, and maintain a commitment to professional excellence, quality and continuous improvement. The Role (manager input) Summary Job Responsibilities • Lead a DevSecOps team that builds and manages secure cloud environments and CI/CD pipelines integrating automated security testing, vulnerability management and compliance controls to support efficient and secure firmware and software delivery. • Implement security and compliance practices, including vulnerability scanning, dependency analysis, SBOM management, threat modeling, and secure coding standards with SAST, DAST, SCA and SBOM tools. • Collaborate with development teams to improve workflows, release strategies, automated testing environments and integrate security practices into the development process. • Automate the provisioning and configuration of servers, containers, and other infrastructure components using IaC and configuration management tools. • Administer and maintain binary repositories. • Implement and maintain monitoring and logging systems to ensure the health and performance of our CI/CD pipeline infrastructure. • Lead a team through the vulnerability management lifecycle; investigating and remediating security vulnerabilities and incidents in CI/CD pipelines and product releases. • Troubleshoot and resolve issues related to development, automated testing, and release, and security incidents, ensuring tight feedback loops and maximum value throughout. • Collaborate and communicate with development teams to capture performance metrics, identify bottlenecks, and implement improvement strategies. • Work with a cross-functional team to ensure product releases meet internal and regulatory cybersecurity standards. • Stay up to date with emerging technologies, industry trends, security frameworks, and software supply chain security best practices. • Recommend and procure new DevOps and cybersecurity related tools, work with legal to approve tools, track license agreements, communicate with vendors, plan upgrades and negotiate costs. • Actively participate in building and maintaining a strong DevSecOps team by establishing technical interview criteria and evaluating candidates through interviews. • Mentor and provide guidance to members of the DevSecOps team, firmware and software teams, fostering a culture of knowledge sharing, secure development practices and continuous learning/improvement. • Continuously evaluate processes for improvements in efficiency, quality, and safety. • This job description is not intended to be all-inclusive. Responsibilities may evolve over time, and other related duties may be assigned to meet the ongoing needs of the company. Required Qualifications • Bachelor of Science in Computer Science or a related Engineering field. • 2 years of experience as a DevSecOps Engineer or security-focused DevOps Engineer and 5 total years of experience in engineering, with a strong understanding of software development practices and methodologies. • 2 years of experience as a technical lead within DevSecOps or other Engineering practices. • Development experience in either embedded firmware or software. • Experience integrating SAST, DAST, SCA and SBOM tools into CI/CD pipelines. • Hands-on experience managing binary repositories. • Proficiency with AWS or other major cloud platforms. • Proficiency in IaC and configuration management tools like. • Strong scripting skills in languages like Bash, Python, or PowerShell. • Experience using build tools such as CMake, Make, or custom toolchains. • Experience with containerization technologies such as Docker. • Working knowledge of CI/CD tools like Jenkins, Bitbucket Pipelines and GitHub Actions. • Familiarity with monitoring and logging tools such as Prometheus and Grafana. • Cyber Security knowledge and experience ; solid understanding of cybersecurity principles, vulnerability management, and DevSecOps practices. • Experience implementing shift-left security across the product development lifecycle. • Excellent problem-solving and troubleshooting skills, with the ability to analyze complex systems and identify root causes. • Strong communication and collaboration skills, capable of working effectively in cross-functional teams. • Experience interviewing engineering candidates. Preferred Qualifications • Understanding of Agile, DevOps and DevSecOps methodologies, with experience embedding security into software development processes. • Expertise in Git and the Atlassian suite of software development tools including Bitbucket pipelines. • Experience integrating security scanning tools into CI/CD pipelines (SAST, DAST). • Familiarity with automated software composition analysis (SCA) and open-source compliance practices. • Familiarity with DORA metrics. • Cyber Security certifications such as CISSP, CCSP, Security+, AWS Certified Security - Specialty. • Experience with SBOM standards such as SPDX and CycloneDX. • Familiar with industry standards such as EN 18037 and IEC 62443. • Knowledge and experience with techniques required by EU Cyber Resilience Act, particularly with respect to vulnerability management. • Expertise in performing threat modeling and risk assessment. • Experience working alongside cybersecurity teams to ensure secure development practices and incident response readiness. • Previous experience in vendor management. • Experience in multi-disciplinary engineering environment. Work Environment & Physical Requirements • This role primarily operates in an office/lab/manufacturing environment. • Must be able to sit, stand, and use a computer for extended periods of time. • This is a remote or in-office position with occasional travel requirements (less than 10%) or in-office approximately 40% of the time. • Occasional lifting of up to 20 lbs. may be required. • Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions of this role. Equal Opportunity Employer / Disabled / Protected Veterans The Know Your Rights poster is available here: The pay transparency policy is available here: For temporary assignments lasting 13 weeks or longer, AllSTEM Connections is pleased to offer major medical, dental, vision, 401k and any statutory sick pay where required. We are committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please contact your staffing representative who will reach out to our HR team. AllSTEM Connections participates in the E-Verify program in certain locations as required by law. Learn more about the E-Verify program. We also consider for employment qualified applicants regardless of criminal histories, consistent with legal requirements, including, if applicable, the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance. Pursuant to applicable state and municipal Fair Chance Laws and Ordinances, we will consider for employment-qualified applicants with arrest and conviction records, including, if applicable, the San Francisco Fair Chance Ordinance. For Los Angeles, CA applicants: Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Additional Skills (none specified) AllSTEM Representative Contact Info Account Executive: Broughton Branch Phone: (909) 244-1777 Location: Ontario, CA

Created: 2026-03-04