Match Made Tech
Job Title:
DevSecOps Engineer- Greenfield AI Project
Sponsorship:
NOT AVAILABLE
LOCATION:
Irvine, CA (onsite). Monday throughThursday onsite, Fridays remote.
COMPENSATION:
$75-95 an hour. This is a 2-year contract that will convert to full-time.
About the Role
We are looking for our first
DevSecOps Engineer
to establish and scale secure software development and cloud infrastructure practices. We are a rapidly growing startup team within a larger org. This is a unique opportunity to build security into the foundation of our DevOps culture while working on cutting-edge AWS technologies, containerization, and orchestration.
As our first DevSecOps hire, you will define and implement security best practices across our cloud-native infrastructure, CI/CD pipelines, and microservices. You'll work closely with software engineers to ensure our applications are secure, scalable, and compliant with industry standards.
Key Responsibilities Security Automation & Infrastructure Hardening Design and implement security automation within AWS, Docker, Kubernetes, and Helm-based environments. Establish and enforce security best practices for containerized applications. Secure AWS services, including IAM, VPC, S3, RDS, Lambda, and EKS. Harden Kubernetes clusters and ensure compliance with CIS benchmarks. CI/CD & DevSecOps Integration Embed security into CI/CD pipelines with GitHub Actions, ensuring automated vulnerability scanning, SAST, DAST, and dependency management. Work with development teams to shift security left by integrating security tooling early in the SDLC. Automate compliance checks and infrastructure security policies using IaC tools like Terraform or CloudFormation. Threat Detection & Incident Response Implement real-time monitoring, anomaly detection, and logging solutions (e.g., AWS CloudTrail, GuardDuty, WAF, SIEM). Define incident response procedures and conduct security incident drills. Conduct threat modeling and risk assessments for applications and infrastructure. Collaboration & Security Culture Educate engineers on secure coding practices, DevSecOps principles, and cloud security best practices. Partner with leadership to set security objectives and align security strategies with business goals. Drive compliance efforts for industry standards such as SOC 2, ISO 27001, or NIST. What We're Looking For
5+ years
of experience in DevSecOps, Cloud Security, or Infrastructure Security. Strong hands-on experience with
AWS security best practices , including IAM, networking, and encryption. Deep expertise in
Docker, Kubernetes, Helm , and securing containerized environments. Experience integrating security into
CI/CD pipelines
(GitHub Actions, GitLab CI, Jenkins, or ArgoCD). Knowledge of
Infrastructure as Code (IaC)
tools (Terraform, CloudFormation, Pulumi). Familiarity with
SAST, DAST, vulnerability scanning
tools (e.g., Snyk, Aqua Security, Trivy, Checkov). Strong scripting and automation skills (Python, Bash, Go). Understanding of security frameworks and compliance (SOC 2, ISO 27001, NIST, CIS). Nice to Have
Experience with
service mesh
technologies like Istio or Linkerd. Experience with Kubernetes
policy management
(OPA, Kyverno). Certifications such as
AWS Security Specialty, CKS (Certified Kubernetes Security Specialist), or CISSP . Why Join Us?
Greenfield opportunity
- build the DevSecOps function from scratch. Work with cutting-edge cloud and containerization technologies. Influence security culture and best practices in a fast-growing startup environment.
DevSecOps Engineer- Greenfield AI Project
Sponsorship:
NOT AVAILABLE
LOCATION:
Irvine, CA (onsite). Monday throughThursday onsite, Fridays remote.
COMPENSATION:
$75-95 an hour. This is a 2-year contract that will convert to full-time.
About the Role
We are looking for our first
DevSecOps Engineer
to establish and scale secure software development and cloud infrastructure practices. We are a rapidly growing startup team within a larger org. This is a unique opportunity to build security into the foundation of our DevOps culture while working on cutting-edge AWS technologies, containerization, and orchestration.
As our first DevSecOps hire, you will define and implement security best practices across our cloud-native infrastructure, CI/CD pipelines, and microservices. You'll work closely with software engineers to ensure our applications are secure, scalable, and compliant with industry standards.
Key Responsibilities Security Automation & Infrastructure Hardening Design and implement security automation within AWS, Docker, Kubernetes, and Helm-based environments. Establish and enforce security best practices for containerized applications. Secure AWS services, including IAM, VPC, S3, RDS, Lambda, and EKS. Harden Kubernetes clusters and ensure compliance with CIS benchmarks. CI/CD & DevSecOps Integration Embed security into CI/CD pipelines with GitHub Actions, ensuring automated vulnerability scanning, SAST, DAST, and dependency management. Work with development teams to shift security left by integrating security tooling early in the SDLC. Automate compliance checks and infrastructure security policies using IaC tools like Terraform or CloudFormation. Threat Detection & Incident Response Implement real-time monitoring, anomaly detection, and logging solutions (e.g., AWS CloudTrail, GuardDuty, WAF, SIEM). Define incident response procedures and conduct security incident drills. Conduct threat modeling and risk assessments for applications and infrastructure. Collaboration & Security Culture Educate engineers on secure coding practices, DevSecOps principles, and cloud security best practices. Partner with leadership to set security objectives and align security strategies with business goals. Drive compliance efforts for industry standards such as SOC 2, ISO 27001, or NIST. What We're Looking For
5+ years
of experience in DevSecOps, Cloud Security, or Infrastructure Security. Strong hands-on experience with
AWS security best practices , including IAM, networking, and encryption. Deep expertise in
Docker, Kubernetes, Helm , and securing containerized environments. Experience integrating security into
CI/CD pipelines
(GitHub Actions, GitLab CI, Jenkins, or ArgoCD). Knowledge of
Infrastructure as Code (IaC)
tools (Terraform, CloudFormation, Pulumi). Familiarity with
SAST, DAST, vulnerability scanning
tools (e.g., Snyk, Aqua Security, Trivy, Checkov). Strong scripting and automation skills (Python, Bash, Go). Understanding of security frameworks and compliance (SOC 2, ISO 27001, NIST, CIS). Nice to Have
Experience with
service mesh
technologies like Istio or Linkerd. Experience with Kubernetes
policy management
(OPA, Kyverno). Certifications such as
AWS Security Specialty, CKS (Certified Kubernetes Security Specialist), or CISSP . Why Join Us?
Greenfield opportunity
- build the DevSecOps function from scratch. Work with cutting-edge cloud and containerization technologies. Influence security culture and best practices in a fast-growing startup environment.