DevSecOps Staff Engineer | Securing Cloud Platforms for a Global Multi-Billion-Dollar Digital Media Company

About the Role

The role  DevSecOps Staff Engineer sits at the intersection of security, cloud infrastructure, and modern DevOps practices within a large-scale, global digital platform. The organization delivers expert-led insights, research, and decision-support content across personal finance, health, business, and everyday life topics, helping millions of users make confident, informed choices.

As a DevSecOps Staff Engineer, you will embed security deeply into the software delivery lifecycle. You will design and operate secure CI/CD pipelines, automate cloud security controls, and partner closely with engineering and operations teams to ensure scalable, compliant, and resilient systems. This is a hands-on, senior role with strong ownership, technical depth, and influence across teams.

What You’ll Do

• Design, build, and maintain secure CI/CD pipelines using DevSecOps best practices to maximize automation and reduce manual intervention

• Integrate SAST, DAST, SCA, and penetration testing tools into pipelines to enable secure build, test, and deployment workflows

• Implement and enforce security controls across cloud environments (AWS, GCP), including IAM, container security (EKS/ECS), and data encryption for cloud services

• Automate vulnerability scanning, monitoring, and compliance processes in collaboration with DevOps and development teams

• Review cloud architectures, identify security gaps, and implement appropriate controls

• Recommend architecture and process improvements to strengthen security posture at scale

• Mentor engineers on secure development practices, tooling, and operational security standards

What You Bring

• Bachelor’s degree in Computer Science or a related field, or equivalent practical experience

• 10+ years of industry experience, including AWS Certified Security – Specialty

• Strong hands-on experience with SAST, DAST, SCA, and penetration testing tools

• 5+ years of experience building and securing AWS-based cloud solutions using services such as EC2, RDS, ELB, S3, VPC, and CloudWatch

• Solid experience with CI/CD tooling such as GitHub Actions, GitHub Packages, Jenkins, or similar

• Deep understanding of cloud security best practices and the OWASP Top 10

• Proficiency in scripting languages such as Python or Bash

• Working knowledge of Kubernetes, Docker Swarm, or other container orchestration platforms

• Strong problem-solving mindset with a passion for staying current on emerging security threats and technologies

• Flexibility to work in shifts as required

Good to Have

• AWS Certified DevOps Engineer

• Experience with observability and monitoring tools such as CloudWatch or New Relic

• Hands-on experience with infrastructure automation tools like Terraform, Ansible, Chef, or Puppet

• Experience with Windows and Linux system administration

  High Impact Jobs: CareerXperts Jobs 

  Follow CareerXperts on LinkedIn: CareerXperts Consulting