DevSecOps Team Lead

This is a fully remote position, open to applicants in Europe.

📋 Description

• Inspire, mentor, and guide a team of DevSecOps engineers. Conduct performance evaluations, manage career development trajectories, and cultivate a high-performance culture.

• Establish the DevSecOps strategy and multi-quarter planning, ensuring alignment of security initiatives with overarching business and engineering objectives.

• Serve as the main liaison for Engineering and Product leaders to guarantee that security requirements are integrated into the Product Discovery stage.

• Spearhead the implementation of organizational guardrails utilizing tools such as OPA (Open Policy Agent) or Kyverno to automate compliance across all environments.

• Supervise the design of secure cloud infrastructures (AWS/Azure/GCP) and Kubernetes clusters, emphasizing Zero Trust networking and identity-based access.

• Assess, procure, and manage third-party security vendors and tools (e.g., Snyk, Wiz, Cloudflare), ensuring optimal ROI and technical compatibility.

• Set and monitor key performance indicators (KPIs) like Mean Time to Remediate (MTTR), vulnerability resolution rates, and false-positive metrics.

• Act as a technical escalation point for critical security incidents and facilitate the "Blameless Post-Mortem" process to promote systemic enhancements.

⛳️ Requirements

• 6+ years of experience in Security, DevOps, or Infrastructure roles.

• At least 2 years in a leadership role (Team Lead, Tech Lead, or Engineering Manager).

• Demonstrated success in scaling security practices within a cloud-native, high-growth setting.

• Advanced knowledge of Terraform/OpenTofu, Ansible, and CI/CD platforms (GitHub Actions, GitLab CI).

• Comprehensive understanding of Kubernetes security (RBAC, Network Policies, Admission Controllers) and cloud provider security services.

• Experience in implementing and fine-tuning SAST, DAST, SCA, and Secret Management (HashiCorp Vault) at scale.

• Proficient in Python, Go, or TypeScript for developing custom internal security tools and integrations.

• Capability to balance "ideal security" with the "pace of business."

• Outstanding ability to convey complex technical risks in terms of business impact for executive stakeholders.

🏝️ Benefits

• Opportunities for stock grants based on your role, employment status, and location.

• Additional perks and benefits tailored to your employment status and country.

• Flexibility for remote work, including optional access to WeWork locations.