DevSecOps Engineer II - Vulnerability Management

Company Summary

EchoStar is reimagining the future of connectivity. Our business reach spans satellite television service, live-streaming and on-demand programming, smart home installation services, mobile plans and products.

Today, our brands include Boost Mobile, DISH TV, Gen Mobile, Hughes and Sling TV.

Department Summary

Our Technology teams challenge the status quo and reimagine capabilities across industries. Whether through research and development, technology innovation or solution engineering, our team members play a vital role in connecting consumers with the products and platforms of tomorrow.

Job Duties and Responsibilities

Candidates must be willing to participate in at least one in-person interview, which may include a live whiteboarding or technical assessment session.

Key Responsibilities :

• Help architect, implement, and manage automated security tooling (e.g., SAST, DAST, IaC, container scanning, AI Security) across the SDLC, integrating with developer environments, CI / CD pipelines, and production systems
• Assist with maturing a comprehensive vulnerability management program, overseeing scanning, risk assessment, reporting, and remediation across applications, infrastructure, and third-party dependencies
• Partner with engineering and product teams to embed secure development practices from design through deployment, providing expert guidance and integration support
• Establish and refine vulnerability tracking and reporting processes, enabling rapid awareness, prioritization, and resolution of security issues through coordinated efforts across teams
• Assist with refining and enforcing security policies and guardrails as code for cloud environments (AWS, Azure, GCP), ensuring automated enforcement of secure configurations and practices
• Drive cross-functional collaboration with Dev, Ops, and InfoSec teams, incident support, automation solutions, and reporting to strengthen the organization’s security posture and culture
• Execution of regular asset discovery and vulnerability assessment scanning, interpret results, create and distribute reporting, educate and guide stakeholders, and prioritize remediation efforts based on risk
• Provide expert guidance and integration support to empower asset owners to avoid risks and prevent risks from reaching production environments
• Participate in incident response activities related to vulnerabilities and misconfigurations, assisting with root cause analysis and mitigating control implementation

Skills, Experience and Requirements

Education and Experience :

Skills and Qualifications :

Visa sponsorship not available for this role

Salary Ranges

Compensation : $72,400.00 / Year - $103,400.00 / Year

Benefits

We offer versatile health perks, including flexible spending accounts, HSA, a 401(k) Plan with company match, ESPP, career opportunities, and a flexible time away plan; all benefits can be viewed here : DISH Benefits .

The base pay range shown is a guideline. Individual total compensation will vary based on factors such as qualifications, skill level, and competencies; compensation is based on the role's location and is subject to change based on work location.

Candidates need to successfully complete a pre-employment screen, which may include a drug test and DMV check. Our company is committed to fostering an inclusive and equitable workplace where every individual has the opportunity to succeed. We are dedicated to providing individuals with criminal or arrest records a fair chance of employment in accordance with local, state, and federal laws.

The posting will be active for a minimum of 3 days. The active posting will continue to extend by 3 days until the position is filled.

We pride ourselves on developing and promoting talent as an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status. EchoStar will accommodate the sincerely held religious beliefs of employees if such accommodations are not undue hardships and are otherwise within the bounds of applicable law. All qualified applicants with arrest or conviction records will be considered for employment in accordance with local, state, and federal law. You may redact any information that identifies age, date of birth, or dates of school / graduation from your application documents before submission and throughout our application process.

EchoStar will provide reasonable accommodation to otherwise qualified job applicants and employees with known physical or mental disabilities, unless doing so poses an undue hardship on the Company, poses a direct threat of substantial harm to others, or is otherwise not required by law. EchoStar has a more detailed Accommodation Policy that applies to employees. EchoStar endeavors to make echostar.com and jobs.echostar.com accessible to users. Please contact leaves@dish.com if you would like to discuss the accessibility of our website or need assistance completing the application process. This contact information is for accommodation requests only; do not use this contact information to inquire about the status of applications.

Click the links to access the following statements : EEO Policy Statement , Pay Transparency , EEOC Know Your Rights ( English / Spanish )