Anomali
Join to apply for the
DevSecOps Engineer
role at
Anomali .
Company Description: Anomali is headquartered in Silicon Valley and is the Leading AI‑Powered Security Operations Platform that is modernizing security operations. At the center of it is an omnipresent, intelligent, and multilingual Anomali Copilot that automates important tasks and empowers your team to deliver the requisite risk insights to management and the board in seconds. The Anomali Copilot navigates a proprietary cloud‑native security data lake that consolidates legacy attempts at visibility and provides first‑in‑market speed, scale, and performance while reducing the cost of security analytics. Anomali combines ETL, SIEM, XDR, SOAR, and the largest repository of global intelligence in one efficient platform. Protect and drive your business with better productivity and talent retention.
Job Description:
What You'll Do
Build and maintain defense‑in‑depth strategies across AWS and Kubernetes (WAF, NACLs, IAM, encryption, segmentation)
Integrate security automation into CI/CD (SAST, DAST, dependency and container scanning)
Partner with Pen Testers and Red Teams on offensive testing, threat modeling, and vulnerability remediation
Drive continuous compliance with SOC 2, GDPR, and FedRAMP standards
Implement and monitor cloud security controls with AWS Security Hub, GuardDuty, CloudTrail, and CloudWatch
Secure secrets and credentials with AWS Secrets Manager, Vault, or SSM Parameter Store
Define and enforce security guardrails through Infrastructure as Code (Terraform / CloudFormation)
Lead incident response, security reviews, and risk assessments
Qualifications
3+ years in DevSecOps / Cloud Security / Infrastructure Security
Deep hands‑on experience with AWS (EKS, IAM, VPC, RDS, Lambda, etc.) and Kubernetes security (RBAC, Network Policies, Admission Controllers)
Solid grasp of network security and Zero Trust principles
Proven collaboration with Pen Testing / Red Team operations
Proficiency in Terraform, CloudFormation, or Pulumi
Familiarity with CIS Benchmarks, NIST 800‑53, OWASP Top 10
Scripting skills in Python, Bash, or Go
AWS Certified Security – Specialty, CKS, or CKAD
Experience with Aqua, Prisma Cloud, Trivy, Falco, or Snyk
Background in multi‑tenant SaaS or multi‑account AWS environments
This position is an onsite/hybrid role. Currently, the team is working Mon/Tue/Wed onsite in Redwood City, CA
This position does have an on‑call rotation. One week on‑call every month, as this responsibility is shared across the team. This position is not eligible for employment visa sponsorship. The successful candidate must not now, or in the future, require visa sponsorship to work in the United States
Equal Opportunities Monitoring
It is our policy to ensure that all eligible persons have equal opportunity for employment and advancement on the basis of their ability, qualifications and aptitude. We select those suitable for appointment solely on the basis of merit without regard to an individual's disability, race, religion, sex, age or sexual orientation. Monitoring is carried out to ensure that our equal opportunity policy is effectively implemented.
Compensation Transparency: $145,000 - $170,000 USD. Please note that the annual base salary range is a guideline and, for candidates who receive an offer, the base pay will vary based on factors such as work location, as well as, knowledge, skills and experience of the candidate. In addition to base pay, this position is eligible for benefits, and may be eligible for equity.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
#J-18808-Ljbffr
DevSecOps Engineer
role at
Anomali .
Company Description: Anomali is headquartered in Silicon Valley and is the Leading AI‑Powered Security Operations Platform that is modernizing security operations. At the center of it is an omnipresent, intelligent, and multilingual Anomali Copilot that automates important tasks and empowers your team to deliver the requisite risk insights to management and the board in seconds. The Anomali Copilot navigates a proprietary cloud‑native security data lake that consolidates legacy attempts at visibility and provides first‑in‑market speed, scale, and performance while reducing the cost of security analytics. Anomali combines ETL, SIEM, XDR, SOAR, and the largest repository of global intelligence in one efficient platform. Protect and drive your business with better productivity and talent retention.
Job Description:
What You'll Do
Build and maintain defense‑in‑depth strategies across AWS and Kubernetes (WAF, NACLs, IAM, encryption, segmentation)
Integrate security automation into CI/CD (SAST, DAST, dependency and container scanning)
Partner with Pen Testers and Red Teams on offensive testing, threat modeling, and vulnerability remediation
Drive continuous compliance with SOC 2, GDPR, and FedRAMP standards
Implement and monitor cloud security controls with AWS Security Hub, GuardDuty, CloudTrail, and CloudWatch
Secure secrets and credentials with AWS Secrets Manager, Vault, or SSM Parameter Store
Define and enforce security guardrails through Infrastructure as Code (Terraform / CloudFormation)
Lead incident response, security reviews, and risk assessments
Qualifications
3+ years in DevSecOps / Cloud Security / Infrastructure Security
Deep hands‑on experience with AWS (EKS, IAM, VPC, RDS, Lambda, etc.) and Kubernetes security (RBAC, Network Policies, Admission Controllers)
Solid grasp of network security and Zero Trust principles
Proven collaboration with Pen Testing / Red Team operations
Proficiency in Terraform, CloudFormation, or Pulumi
Familiarity with CIS Benchmarks, NIST 800‑53, OWASP Top 10
Scripting skills in Python, Bash, or Go
AWS Certified Security – Specialty, CKS, or CKAD
Experience with Aqua, Prisma Cloud, Trivy, Falco, or Snyk
Background in multi‑tenant SaaS or multi‑account AWS environments
This position is an onsite/hybrid role. Currently, the team is working Mon/Tue/Wed onsite in Redwood City, CA
This position does have an on‑call rotation. One week on‑call every month, as this responsibility is shared across the team. This position is not eligible for employment visa sponsorship. The successful candidate must not now, or in the future, require visa sponsorship to work in the United States
Equal Opportunities Monitoring
It is our policy to ensure that all eligible persons have equal opportunity for employment and advancement on the basis of their ability, qualifications and aptitude. We select those suitable for appointment solely on the basis of merit without regard to an individual's disability, race, religion, sex, age or sexual orientation. Monitoring is carried out to ensure that our equal opportunity policy is effectively implemented.
Compensation Transparency: $145,000 - $170,000 USD. Please note that the annual base salary range is a guideline and, for candidates who receive an offer, the base pay will vary based on factors such as work location, as well as, knowledge, skills and experience of the candidate. In addition to base pay, this position is eligible for benefits, and may be eligible for equity.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
#J-18808-Ljbffr