As a Sr. SecOps Engineer (Security), you will develop a solid understanding of our full-stack offering with a primary focus on safeguarding our infrastructure and application layers. You are obsessed with zero-trust principles, threat mitigation, and system resilience. You are excited about leading DevSecOps initiatives, automating security controls, and ensuring our platforms remain highly available while actively defending against evolving cyber threats.

• Security Architecture & Hardening: Design and enforce security best practices across cloud environments, operating systems, networks, and containers. Implement zero-trust architectures and rigorous least-privilege access controls.

• Identity & Access Management: Policy enforcement, audit and governance.

• Vulnerability & Threat Management: Lead regular vulnerability assessments, threat modeling, and coordinate penetration testing efforts. Automate the patching and remediation lifecycle across the infrastructure.

• Incident Response: Serve as a primary technical escalation point for security events; lead active threat hunting, investigations, root cause analysis, and post-mortem reporting.

• Security Observability: Deploy and manage SIEM platforms, IDS/IPS, and centralized logging to proactively monitor for system anomalies and security breaches.

• Application Security (AppSec): Advise on application security design.

• DevSecOps & Automation: Integrate SAST, DAST, and SCA scanning into CI/CD pipelines. Implement secrets management and automate infrastructure compliance using IaC.

• Reliability & Troubleshooting: Troubleshoot complex infrastructure and network issues while maintaining availability and performance.

• Compliance & Governance: Enforce security frameworks such as CIS benchmarks and NIST and support security audits.

• AI Governance: Leverage AI in day-to-day responsibilities and enforce AI GRC (Governance, Risk, and Compliance) standards.

• Create and maintain SecOps and SRE agents within the SDLC using AI capabilities.

• Design and test Disaster Recovery processes annually.

• Cybersecurity Tooling: CrowdStrike, Obsidian, Wiz

• 4+ years of experience in cloud infrastructure, Site Reliability Engineering, or DevOps with a strong cybersecurity focus.

• Experience with agentic AI frameworks (e.g., Gemini, Claude).

• Expertise in IAM, encryption architectures, and network security.

• Experience with SIEMs, WAFs, EDR, and CSPM platforms.

• Experience integrating security controls into deployment pipelines.

• Strong Linux and scripting experience (Python, Bash, Go) focused on security automation and remediation.

• Container security expertise (Docker, Kubernetes).

• Experience with SOC1/2, PCI, and similar compliance standards.

• Knowledge of Next-Gen Firewalls, ACLs, VPNs, and ZTNA.

• Certifications such as CISSP, CISM, AWS/GCP/Azure Security Specialty, or CKS.

• Understanding of penetration testing, Red/Blue Team exercises, and incident response.

• Strong root-cause analysis skills across infrastructure, networks, and applications.

• Ability to create architecture diagrams and threat models.

• Availability for occasional maintenance and on-call support.