Xometry (NASDAQ: XMTR) is seeking a Staff-level DevSecOps Engineer to embed security into every stage of the software development lifecycle. This role is critical in connecting innovative ideas with manufacturing capabilities through Xometry's digital marketplace.
Key Responsibilities:
- Integrate security into CI/CD pipelines
- Design and implement security automation tools
- Develop and enforce security policies
- Monitor and remediate security vulnerabilities
- Perform security assessments and code reviews
- Manage security tools and infrastructure
- Ensure secure coding practices
- Secure Kubernetes clusters and containerized environments
- Manage infrastructure as code (IaC)
- Automate security tasks using Python and shell scripting
- Stay updated on security trends and enhance organizational security
- Participate in incident response and disaster recovery planning
Qualifications:
- 8+ years of experience in DevSecOps or related fields
- Proficiency in AWS (or GCP/Azure with willingness to learn AWS)
- Experience with CI/CD tools and security integration
- Hands-on Kubernetes experience
- Proficiency in IaC tools (Terraform, OpenTofu, CloudFormation)
- Strong programming skills in Python and shell scripting
- Knowledge of security best practices
- Excellent problem-solving and communication skills
- US Citizenship or legal permanent residency required (ITAR data handling)
Preferred Qualifications:
- Security architecture experience
- JavaScript knowledge
- Relevant certifications (CISSP, Security+, AWS Security Specialty)
- Microservices security automation experience
- Bachelor's degree in related field or equivalent experience
Xometry values diversity, equity, inclusion, and belonging, providing equal opportunities regardless of background.