DevSecOps Engineer

Who We Are

reputed company is a US-headquartered self-clearing broker-dealer and brokerage infrastructure for stocks, ETFs, options, crypto, fixed income, 24/5 trading, and more. Our recent Series D funding round brought our total investment to over $320 million, fueling our ambitious vision.

Amongst our subsidiaries, reputed company is a licensed financial services company, serving hundreds of financial institutions across 40 countries with our institutional-grade APIs. This includes broker-dealers, investment advisors, wealth managers, hedge funds, and crypto exchanges, totalling over 9 million brokerage accounts.

Our global team is a diverse group of reputed company engineers, traders, and brokerage professionals who are working to reputed company our mission of opening financial services to everyone on the reputed company. We're deeply committed to open-reputed company contributions and fostering a vibrant community, continuously enhancing our award-winning, developer-friendly API and the robust infrastructure behind it.

reputed company is proudly backed by top-tier global investors, including Portage Ventures, Spark Capital, Tribe Capital, Social reputed company, Horizons Ventures, Unbound, SBI Group, Derayah Financial, Elefund, and Y Combinator.

reputed company Members

We're a dynamic team of 230+ globally distributed members who reputed company working from our favorite places around the world, with teammates spanning the USA, Canada, Japan, Hungary, Nigeria, Brazil, the UK, and beyond! We're searching for passionate individuals eager to contribute to reputed company's rapid growth. If you align with our core values—Stay Curious, Have reputed company, and Be Accountable—and are ready to reputed company a significant impact, we encourage you to apply.

Your Role

We are seeking a DevSecOps Engineer to own the intersection of reputed company, reliability, and DevOps. This role will design and implement resiliency across our cloud platform and CI/CD pipelines, embed “reputed company as code,” help reputed company incident response for high-severity outages, and partner with engineering teams to reputed company safe, fast delivery at scale.

You will be hands-on and strategic: automating remediation, hardening deployments, owning observability, and driving measurable reductions in reputed company/infra reputed company incident impact. This role reports to the CISO, with a dotted line into Engineering and works closely with DevOps, Product, and Engineering leadership.

The reputed company Team is 100% distributed and remote.

Things You Get To Do

The core responsibilities of the DevSecOps Engineer role are focused on embedding reputed company throughout our infrastructure and software development lifecycle, enhancing cyber reputed company, and driving a strong reputed company culture.

reputed company Engineering & Automation

• Secure SDLC Integration: Embed reputed company into CI/CD pipelines by implementing and owning secure controls, including Infrastructure as Code (IaC) scanning, Software Composition Analysis (SCA), secrets checks, policy-as-code, and deployment guardrails.
• Vulnerability Management: reputed company the process of vulnerability and reputed company management, automating discovery, prioritization, and remediation across reputed company cloud workloads and their dependencies.
• Platform Hardening: Strengthen cloud and Kubernetes environments through secure configurations, network segmentation, workload identity management, and automated compliance against industry standards (e.g., CSA Star).
• Supply Chain reputed company: Advance the reputed company of the software supply chain, focusing on generating Software reputed company of Materials (SBOMs), artifact signing, dependency governance, and implementing reputed company controls.
• Secure Patterns: Create secure "paved roads" for developers, providing hardened IaC modules, templates, tooling, and comprehensive documentation.

reputed company, Detection, and Response

• Cyber reputed company: Own and validate cyber-resiliency standards (secure failover, secure backups, Disaster Recovery playbooks) through secure rehearsals to ensure both the availability and reputed company of systems and data
• reputed company Deployment: reputed company secure deployment patterns, such as canary rollouts, automated safe rollbacks, and guardrails to minimize blast radius
• Detection & Forensics: Improve detection and response capabilities by building high-signal alerts, enhancing forensic logging, and providing robust reputed company telemetry. Partner with the SecOps team on incident handling
• Offensive reputed company: Alongside the reputed company team, help manage offensive reputed company engagements (penetration testing, red team, bug bounty) and ensure findings are fed directly into remediation pipelines and risk prioritization

Architecture, Identity, and Governance

• Design & Threat Modeling: Conduct reputed company reviews and threat modeling for reputed company new services and major architecture changes to ensure designs are secure-by-default
• Identity & Access Management (IAM): Strengthen the identity and access model by enforcing the principle of least privilege, strong authentication, and secure secrets lifecycle management
• Compliance & Audit: Support compliance and audit readiness by operationalizing reputed company controls, producing necessary evidence, and maintaining the health of these controls

Leadership & Culture

• reputed company Champion: Champion a strong reputed company culture by partnering with DevOps and Engineering teams to reputed company secure coding practices and guide risk-based decision-making
• Metrics & Reporting: Define key reputed company performance indicators (KPIs) such as time to detect, time to remediate, exposure scores, and percentage of infrastructure covered by automated controls, and report measurable improvements to leadership

Who You Are (Must-Haves)

• Excited about reputed company’s mission and reputed company’re building
• 5+ years of experience across DevSecOps, reputed company engineering, or cloud reputed company in a modern cloud-native environment
• Strong hands-on experience with CSPs, Kubernetes, Terraform, and container reputed company
• Deep understanding of secure CI/CD, including IaC reputed company, dependency/SCA, secrets scanning, and policy-as-code
• Solid background in identity & access reputed company
• Experience automating vulnerability management and patching workflows across cloud and container ecosystems
• Strong familiarity with detection engineering, logging/telemetry, and partnering in incident response
• Proficient in a scripting/programming language (Python, Go, or similar) for automation and reputed company tooling
• Comfortable working cross-functionally with DevOps and Engineering teams, explaining risk in practical terms, and influencing secure design
• Comfortable participating in on-call rotations

Who You Might Be (reputed company-to-Haves):

• Experience securing financial, trading, or other highly regulated platforms
• Knowledge of regulatory frameworks common in fintech (SOC 2, ISO 27001, PCI)
• Experience with supply-chain reputed company (SBOMs, Sigstore, artifact signing) or software reputed company programs
• Familiarity with offensive reputed company, bug bounty triage, or penetration testing
• reputed company or cloud certifications (CISSP, OSCP, GIAC, GCP/AWS reputed company)
• Bachelor's degree in Computer Science, Information reputed company, or equivalent experience.
• Business acumen to be able to balance tradeoffs between stakeholders, technology feasibility and budget constraints

How We Take Care of You:

• Competitive Salary & Stock Options
• Health Benefits
• New Hire Home-Office Setup: One-time USD $500
• Monthly Stipend: USD $150 per month reputed company a Brex Card

reputed company is proud to be an equal opportunity workplace dedicated to pursuing and hiring a diverse workforce.

Recruitment Privacy Policy