Staff DevSecOps Engineer

Job Description

Xometry is seeking a Staff DevSecOps Engineer to enhance its cybersecurity efforts. The role involves embedding security into all stages of the software development lifecycle. The engineer will collaborate with development, operations, and security teams to integrate security into CI/CD pipelines and ensure security is embedded at every stage. They will design, implement, and maintain security automation tools, monitor vulnerabilities, and enforce security policies.

Xometry, as a company, needs someone who can perform regular security assessments, lead efforts to secure Kubernetes clusters, manage infrastructure as code, and stay updated with the latest security threats.

Responsibilities include:

• Collaborating with teams to integrate security into the CI/CD pipeline.
• Designing, implementing, and maintaining security automation tools.
• Developing and enforcing security policies for cloud and on-premises infrastructure.
• Monitoring and analyzing security vulnerabilities and incidents.
• Performing security assessments, including code reviews and penetration tests.
• Implementing and managing security tools like firewalls and intrusion detection systems.
• Working with development teams to ensure secure coding practices.
• Leading efforts to secure Kubernetes clusters and containerized environments.
• Managing infrastructure as code (IaC) using tools like Terraform.
• Automating security tasks using Python and shell scripting.
• Staying up-to-date with security threats and industry trends.
• Participating in incident response and disaster recovery planning.

Requirements include:

• Minimum of 8+ years of experience in DevSecOps, DevOps, or a related field.
• Experience with AWS or deep fluency in one of GCP or Azure.
• Proficiency with CI/CD tools like Github Actions, Jenkins, GitLab CI, or CircleCI.
• Hands-on experience with Kubernetes, including securing clusters.
• Proficiency with infrastructure as code (IaC) tools such as Terraform.
• Strong programming skills in Python and shell scripting.
• Knowledge of security best practices.
• Excellent problem-solving and communication skills.
• Must be a US Citizen or legal permanent resident.

The role offers:

• Opportunity to work at Xometry.
• Involvement in securing Kubernetes clusters and containerized environments.