Staff DevSecOps Engineer

Job Description

Xometry is seeking a Staff DevSecOps Engineer to enhance their cybersecurity team. This role is crucial for embedding security into the software development lifecycle. The ideal candidate has over 8 years of experience in DevSecOps or related fields and expertise in cloud platforms and security automation.

The Staff DevSecOps Engineer will collaborate with development, operations, and security teams to integrate security into the CI/CD pipeline. They will design, implement, and maintain security automation tools to manage vulnerabilities and enforce security policies for cloud and on-premises infrastructure. Regular security assessments and the management of security tools are also key responsibilities.

Xometry offers:

• An opportunity to work on cutting-edge technologies and contribute to the security of a leading digital manufacturing marketplace.

Role involves:

• Collaborating with teams to integrate security into the CI/CD pipeline.
• Designing and maintaining security automation tools.
• Developing and enforcing security policies for infrastructure.
• Monitoring and remediating security vulnerabilities and incidents.
• Performing security assessments, including code reviews and penetration tests.
• Implementing and managing security tools (firewalls, intrusion detection/prevention).
• Securing Kubernetes clusters and containerized environments.
• Managing infrastructure as code (IaC) using Terraform, OpenTofu, or CloudFormation.
• Automating security tasks using Python and shell scripting.
• Participating in incident response and disaster recovery planning.

Requirements:

• 8+ years of experience in DevSecOps, DevOps, or a related field.
• Experience with AWS, GCP or Azure.
• Proficiency with CI/CD tools (Github Actions, Jenkins, GitLab CI, or CircleCI).
• Hands-on experience with Kubernetes.
• Proficiency with infrastructure as code (IaC) tools (Terraform, OpenTofu, or CloudFormation).
• Strong programming skills in Python and shell scripting.
• Knowledge of security best practices (secure coding, encryption, authentication, access control).
• Excellent problem-solving and communication skills.
• Must be a US Citizen or legal permanent resident.

Xometry offers:

• Hybrid work environment.