Manager, DevSecOps Engineering

Key Responsibilities:

• Own and enforce DevSecOps practices across CI/CD pipelines (SAST, DAST, SCA, and other practices)
• Integrate automated security tooling into development workflows
• Partner with development teams to perform secure code reviews and threat modeling

Vulnerability & Risk Management:

• Drive vulnerability identification, triage, and remediation across infrastructure and applications
• Manage security tooling stack
• Produce and maintain a risk register; track remediation SLAs

Leadership & Collaboration:

• Act as the primary security SME for the engineering organization
• Mentor developers on secure coding practices
• Interface with external auditors, clients, and the executive team on security posture