Staff DevSecOps Engineer Tech Lead

Austin, TX - USA

Monthly Salary: Not Disclosed

Posted on: 2 days ago

Vacancies: 1 Vacancy

Job Summary

Our client is seeking a Staff DevSecOps Engineer to drive DevSecOps initiatives throughout the SDLC. This role combines strategic leadership with tactical execution (approximately 50% hands-on keyboard) requiring someone who can guide a small team of DevSecOps engineers while working alongside them on complex technical challenges.

The ideal candidate will drive operational excellence across our Azure-based infrastructure champion best practices in security and deployment automation and foster a culture of continuous improvement. Your team will be responsible for critical shared services change management processes incident response and cost optimization while collaborating closely with engineering IT and InfoSec teams to ensure our infrastructure is secure scalable and efficiently managed.

Responsibilities

Leadership and Mentorship: Guide a team of four DevSecOps engineers promoting best practices in automation security and reliability
Secure CI/CD Pipelines: Maintain GitLab-based pipelines ensuring consistent integration of security scans automated testing and compliance gates
Infrastructure as Code: Develop and maintain infrastructure through Terraform enabling repeatable and auditable environment provisioning
Cloud Operations: Architect automate and manage infrastructure in Azure (primary) with some AWS exposure supporting hybrid and microservices deployments
Monitoring and Observability: Implement and optimize alerting and performance monitoring through New Relic to ensure high availability and rapid incident response
Security Integration and Automation: Partner with InfoSec to implement automated vulnerability scanning key and secret management (Azure Key Vault) and continuous configuration monitoring aligned with SOC 2 and ISO 27001 standards
Change Management & Compliance: Enforce disciplined change control versioning and deployment approvals in alignment with security and audit requirements
Continuous Improvement: Identify opportunities to enhance delivery velocity system resilience and cost efficiency across the DevSecOps toolchain
Incident Response: Participate in on-call rotation to support production environments and coordinate root-cause analysis and remediation
Engineering Enablement: Work closely with Engineers to design scalable DevSecOps solutions that accelerate delivery improve reliability and enhance developer productivity
Workflow Optimization: Streamline CI/CD processes and reduce friction through automation and tooling improvements
Cloud Migration: Lead cloud migration initiatives ensuring secure scalable and cost-efficient operations (from AWS and GCP to Azure)
FinOps & Cost Optimization: Manage and optimize cloud spend through FinOps methodologies and resource utilization monitoring
Modern DevOps Practices: Champion trunk-based development shift-left implementation and automated quality gates to improve software delivery maturity

Qualifications

Senior level experience (combined 10 years) in DevSecOps DevOps CloudOps Site Reliability position(s)
Served in a mentor or leadership position either formally or informally
Willing to travel to the Houston office twice per year
Deep hands-on experience with Microsoft Azure services including AKS Key Vault Application Configuration Service Bus and Azure SQL
Proven experience managing applications in a .NET environment across both monolithic and microservices architectures for a SAAS platform
Experience in a fast-paced environment with frequent releases (multiple per week)Deep hands-on expertise with Azure (primary) and familiarity with AWS environments
Demonstrated skill in Infrastructure as Code using Terraform
Solid understanding of containerization and orchestration (Docker Kubernetes AKS)Experience implementing security automation including SAST/DAST secrets management and compliance reporting
Knowledge of cloud networking IAM and identity management (Azure AD VNet NSGs)
Proficiency in scripting (PowerShell Bash or Python)
Excellent communication skills and ability to collaborate across development QA and InfoSec teams

Preferred Qualifications

Proficiency in GitLab CI/CD
Experience migrating from Jenkins
Experience migrating from one cloud to another
Experience utilizing AI to increase efficiency
Experience supporting SOC 2 or ISO 27001 audit readiness and evidence collection
Familiarity with multi-cloud governance cost optimization and infrastructure monitoring best practices
Prior experience leading a small technical team in a DevSecOps or SRE function
Experience in a 200-1000 person org
Bachelors degree in Computer Science Information Security or related field

Responsibilities

Leadership and Mentorship: Guide a team of four DevSecOps engineers promoting best practices in automation security and reliability
Secure CI/CD Pipelines: Maintain GitLab-based pipelines ensuring consistent integration of security scans automated testing and compliance gates
Infrastructure as Code: Develop and maintain infrastructure through Terraform enabling repeatable and auditable environment provisioning
Cloud Operations: Architect automate and manage infrastructure in Azure (primary) with some AWS exposure supporting hybrid and microservices deployments
Monitoring and Observability: Implement and optimize alerting and performance monitoring through New Relic to ensure high availability and rapid incident response
Security Integration and Automation: Partner with InfoSec to implement automated vulnerability scanning key and secret management (Azure Key Vault) and continuous configuration monitoring aligned with SOC 2 and ISO 27001 standards
Change Management & Compliance: Enforce disciplined change control versioning and deployment approvals in alignment with security and audit requirements
Continuous Improvement: Identify opportunities to enhance delivery velocity system resilience and cost efficiency across the DevSecOps toolchain
Incident Response: Participate in on-call rotation to support production environments and coordinate root-cause analysis and remediation
Engineering Enablement: Work closely with Engineers to design scalable DevSecOps solutions that accelerate delivery improve reliability and enhance developer productivity
Workflow Optimization: Streamline CI/CD processes and reduce friction through automation and tooling improvements
Cloud Migration: Lead cloud migration initiatives ensuring secure scalable and cost-efficient operations (from AWS and GCP to Azure)
FinOps & Cost Optimization: Manage and optimize cloud spend through FinOps methodologies and resource utilization monitoring
Modern DevOps Practices: Champion trunk-based development shift-left implementation and automated quality gates to improve software delivery maturity

Qualifications

Senior level experience (combined 10 years) in DevSecOps DevOps CloudOps Site Reliability position(s)
Served in a mentor or leadership position either formally or informally
Willing to travel to the Houston office twice per year
Deep hands-on experience with Microsoft Azure services including AKS Key Vault Application Configuration Service Bus and Azure SQL
Proven experience managing applications in a .NET environment across both monolithic and microservices architectures for a SAAS platform
Experience in a fast-paced environment with frequent releases (multiple per week)Deep hands-on expertise with Azure (primary) and familiarity with AWS environments
Demonstrated skill in Infrastructure as Code using Terraform
Solid understanding of containerization and orchestration (Docker Kubernetes AKS)Experience implementing security automation including SAST/DAST secrets management and compliance reporting
Knowledge of cloud networking IAM and identity management (Azure AD VNet NSGs)
Proficiency in scripting (PowerShell Bash or Python)
Excellent communication skills and ability to collaborate across development QA and InfoSec teams

Preferred Qualifications

Proficiency in GitLab CI/CD
Experience migrating from Jenkins
Experience migrating from one cloud to another
Experience utilizing AI to increase efficiency
Experience supporting SOC 2 or ISO 27001 audit readiness and evidence collection
Familiarity with multi-cloud governance cost optimization and infrastructure monitoring best practices
Prior experience leading a small technical team in a DevSecOps or SRE function
Experience in a 200-1000 person org
Bachelors degree in Computer Science Information Security or related field