Senior DevSecOps Engineer

Xometry powers industries by connecting people with big ideas to manufacturers through a digital marketplace.
Security
Senior Software Engineer
Hybrid
5+ years of experience
AI · Enterprise SaaS · Manufacturing

Description For Senior DevSecOps Engineer

Xometry (NASDAQ: XMTR) is seeking a senior-level DevSecOps Engineer to embed security into every stage of the software development lifecycle. The ideal candidate will have 5+ years of experience in DevSecOps or related fields, with strong knowledge of cloud platforms, security automation, and secure coding practices.

Key responsibilities include:

  • Integrating security into CI/CD pipelines
  • Designing and implementing security automation tools
  • Developing security policies and best practices
  • Monitoring and remediating security vulnerabilities
  • Performing security assessments and code reviews
  • Managing security tools and infrastructure
  • Securing Kubernetes clusters and containerized environments
  • Managing infrastructure as code (IaC)
  • Automating security tasks using Python and shell scripting
  • Staying current with security trends and enhancing organizational security

Qualifications:

  • 5+ years of experience in DevSecOps or related fields
  • Experience with AWS (or GCP/Azure with willingness to learn AWS)
  • Proficiency in CI/CD tools, Kubernetes, IaC, and programming (Python, shell scripting)
  • Strong problem-solving and communication skills
  • US Citizenship or legal permanent residency required (ITAR data handling)

Preferred qualifications include security architecture experience, JavaScript knowledge, relevant certifications (CISSP, Security+, AWS), and a related bachelor's degree.

Xometry values diversity, equity, inclusion, and belonging, and is an equal opportunity employer committed to creating a positive workplace for all.

Last updated 2 months ago

Responsibilities For Senior DevSecOps Engineer

  • Integrate security into the CI/CD pipeline
  • Design, implement, and maintain security automation tools and processes
  • Develop and enforce security policies, standards, and best practices
  • Monitor and analyze security vulnerabilities and incidents
  • Perform regular security assessments
  • Implement and manage security tools
  • Ensure secure coding practices and compliance
  • Secure Kubernetes clusters and containerized environments
  • Manage infrastructure as code (IaC)
  • Automate security tasks using Python and shell scripting
  • Stay up-to-date with security threats and trends
  • Participate in incident response and disaster recovery planning

Requirements For Senior DevSecOps Engineer

Python
Kubernetes
  • Minimum of 5+ years of experience in DevSecOps, DevOps, or a related field
  • Experience with AWS or deep fluency in GCP or Azure
  • Proficiency with CI/CD tools (Github Actions, Jenkins, GitLab CI, or CircleCI)
  • Hands-on experience with Kubernetes
  • Proficiency with infrastructure as code (IaC) tools
  • Strong programming skills in Python and shell scripting
  • Knowledge of security best practices
  • Excellent problem-solving skills
  • Strong communication skills
  • Must be a US Citizen or legal permanent resident

Interested in this job?

Jobs Related To Xometry Senior DevSecOps Engineer

Senior DevSecOps Engineer

Senior DevSecOps Engineer needed at Xometry to integrate security into software development lifecycle, with 5+ years experience in cloud platforms and security automation.

Senior DevSecOps Engineer

Senior DevSecOps Engineer needed at Xometry to integrate security into software development lifecycle and manage cloud infrastructure security.

Senior Security Engineer

Senior Security Engineer at Xometry to lead DevSecOps efforts, integrate security into CI/CD, and ensure robust cybersecurity practices.

Senior Security Engineer

Senior Security Engineer role at Xometry, focusing on DevSecOps and embedding security in the software development lifecycle.

Senior DevSecOps Engineer

Senior DevSecOps Engineer at Xometry to integrate security into software development lifecycle, manage cloud security, and automate security processes.