Senior DevSecOps Engineer (Cloud Security Implementation)

Who are we

FalconX is a pioneering team of operators investors and builders committed to revolutionizing institutional access to the crypto markets. Operating at the intersection of traditional finance and cutting-edge technology FalconX addresses the industrys foremost challenges: Navigating the digital asset market can be complex and fragmented with limited products and services that support trading strategies structures and liquidity found in conventional financial markets. As a comprehensive solution for all digital asset strategies from start to scale FalconX operates as the connective tissue empowering clients with seamless navigation through the ever-evolving cryptocurrency landscape.

We are seeking a highly skilled Senior DevSecOps Engineer to join our team. This role is responsible for embedding security at every stage of our cloud infrastructure lifecycle with a strong focus on hands-on implementation automation and DevSecOps best practices. You will work closely with development operations and security teams to ensure our AWS-based environments are secure compliant and resilient.

Key Responsibilities

• Cloud Infrastructure Security
• Design implement and maintain security controls within cloud-based systems focusing on AWS technologies and best practices.
• Integrate security scanning and compliance checks into CI/CD pipelines to ensure continuous security throughout the development lifecycle.
• Conduct regular vulnerability assessments and patching of virtual instances using Ansible and other cloud-native tools.
• Develop and maintain Infrastructure as Code (IaC) using Terraform for IAM Cloudflare and AWS components ensuring security by design.
• Collaborate with cross-functional teams to embed security controls into development and deployment workflows.
• Deploy and manage cloud security tools (e.g. AWS Security Hub GuardDuty Inspector) to enhance cloud security posture.
• Automation and Scripting
• Develop and maintain scripts tools and automation workflows to streamline security operations incident response and compliance checks.
• Create and update Ansible playbooks for consistent automated security configurations across cloud resources.
• Kubernetes and Container Security
• Apply foundational knowledge of container security including best practices for Kubernetes clusters and workloads.
• Support the secure deployment and management of containerized applications ensuring Kubernetes environments adhere to security guidelines.
• Assist with vulnerability scanning secrets management and policy enforcement in Kubernetes as needed.
• Compliance and Best Practices
• Ensure cloud infrastructure adheres to industry security standards and compliance requirements (SOC 2 ISO 27001 PCI DSS etc.).
• Stay up to date with the latest cloud and container security threats vulnerabilities and tools implementing proactive measures to mitigate risk.
• Collaboration and Documentation
• Work closely with DevOps and development teams to integrate security practices into the CI/CD pipeline and SDLC.
• Educate and train teams on secure coding DevSecOps and Kubernetes/container security practices.
• Maintain comprehensive documentation of security processes configurations and incident response procedures.

Qualifications

• Bachelors degree in Computer Science Information Security or a related field.
• 6-8 years of experience in cloud engineering DevOps or security engineering with a strong focus on AWS technologies.
• Hands-on experience with Terraform Ansible and AWS services (EC2 IAM Cloudflare Kubernetes etc.).
• Proficiency in scripting languages such as Python or Bash for automation and security tooling.
• In-depth knowledge of cloud security best practices threat modeling and common vulnerabilities.
• Experience with cloud security tools and integrating security into CI/CD pipelines.
• Foundational knowledge of Kubernetes security and container security principles.
• Excellent problem-solving skills attention to detail and ability to collaborate across teams.

Preferred Qualifications

• AWS Certified Security - Specialty or equivalent cloud security certifications.
• Experience with advanced Kubernetes security (e.g. network policies RBAC Pod Security Policies).
• Knowledge of compliance frameworks (SOC 2 ISO 27001 PCI DSS etc.).

Notice at Collection and Privacy Policy

Applicants located in California and/or applying to a role based in California please refer to our Notice at Collection and Privacy Policy here.

Inclusivity Statement

FalconX is committed to building a diverse inclusive equitable and safe workspace for all people. Our roles are intended for people from all walks of life. We encourage all those interested in applying to our organization to submit an application regardless if you are missing some of the listed background requirements skills or experiences!

As part of our commitment to inclusivity FalconX would like to acknowledge that the EEOC survey has limited potential responses that you can select. For legal reasons FalconX must use this language to align with federal requirements however we want to ensure that you are able to provide a response to our own voluntary survey questions about your identity that best aligns with your most true self.

FalconX is an equal opportunity employer and will not discriminate against an applicant or employee based on race color religion national origin ancestry ethnicity sex (including gender pregnancy sexual orientation and gender identity) age physical or mental disability veteran or military status genetic information citizenship or any other legally-recognized protected basis under federal state or local law.

Applicants with disabilities may be entitled to reasonable accommodation under the Americans with Disabilities Act and other applicable state or local laws. A reasonable accommodation is a change in the way things are normally done which will ensure an equal employment opportunity without imposing undue hardship on FalconX. Please inform FalconXs People team at if you need assistance with participating in the application process.