DevSec Engineer

A company is looking for a DevSec Engineer to lead offensive security operations and enhance security across infrastructure and applications.

Key Responsibilities

Form, lead, and execute Red Team engagements to simulate real-world attack scenarios and recommend remediation strategies

Integrate security requirements into architecture, design, and coding practices while automating code and dependency reviews

Implement security measures in CI / CD pipelines and secure cloud environments, collaborating with DevOps teams

Required Qualifications

Strong background in application security (OWASP, NIST, MITRE ATT&CK)

Proficiency in programming languages such as C#, Python, Java, or JavaScript

Experience with CI / CD and DevSecOps tooling (e.g., SonarQube, Snyk, Veracode)

Cloud security expertise, including IAM and secrets management

Familiarity with regulatory / compliance frameworks relevant to the organization