Senior DevSecOps Engineer

We are seeking a Senior DevSecOps Engineer with strong DevOps or software engineering experience to champion secure development across our platforms and pipelines. This role sits at the intersection of security, development, and operations while driving secure architecture, automation, and innovation across CI/CD, containerized environments, and cloud platforms. You’ll collaborate cross-functionally with development, infrastructure, and data science teams to embed security into every stage of the software lifecycle, including emerging domains like AI and Machine Learning.

Secure Development & DevOps Integration

• Embed security controls into CI/CD pipelines, infrastructure as code, and container orchestration frameworks (e.g., Kubernetes, Helm, Docker).
• Partner with application developers and DevOps engineers to implement secure coding and deployment standards.
• Automate security testing and compliance verification within development workflows.

Security Architecture & AI/Cloud Security

• Evaluate and integrate new technologies including AI model security, data privacy, and supply chain protection.
• Develop and maintain container and cluster security configurations, policies, and runtime monitoring strategies.
• Collaborate with data and infrastructure teams to secure code, APIs, and cloud workloads.

Incident Response & Continuous Improvement

• Respond to real-time incidents and lead mitigation efforts
• Detect, prioritize, and respond to suspicious activities and security events
• Maintain visibility into evolving threats targeting CI/CD, cloud, and AI ecosystems.

Cross Department Collaboration & Enablement

• Act as the bridge between development, operations, and compliance functions to align secure delivery goals.
• Communicate complex security concepts in developer-friendly terms and drive adoption of best practices across teams.
• Contribute to security awareness sessions focused on modern dev tooling, automation, and AI safety.

Qualifications:

• 5+ years in software development, DevOps, or infrastructure engineering with strong exposure to security principles.
• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
• Proven experience in CI/CD pipelines, IaC, or containerized deployments (Kubernetes, Docker).
• Knowledge of web application security (OWASP Top 10), cloud environments, and DevSecOps practices
• Experience with tools such as Azure DevOps, GitHub Actions, Azure Defender/Sentinel, Kubernetes security tools, or equivalent.
• Excellent cross-functional communication skills and ability to influence without authority.

Preferred Qualifications:

• CISSP, CompTIA Security+, or other relevant security certifications
• Experience with Git
• Certifications such as CISSP, CSSLP, or Certified Kubernetes Security Specialist (CKS).
• Experience using Node, Python, Go, Bash or PowerShell
• Background in agile environments supporting rapid iteration and security-as-code adoption

Join us and play a key role in shaping the security posture of critical applications and systems that power our business.

This position is located at our State College, PA headquarters. Remote work is not an option.

This position is ineligible for visa sponsorship. 

To be considered for this role, you must be legally authorized to work in the United States and not require sponsorship for employment now or in the future.

 

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.