DevSecOps Lead

Job Description

So, what will your new role look like?

As a DevSecOps Lead, you will be an operational individual contributor responsible for embedding security directly into our products, pipelines, and development workflows — with a focus on CI/CD, C#/.NET applications, Azure, and AI-driven software delivery. This is a deeply technical role where you will write code, build tooling, and work closely with developers to ensure security is a natural part of how we build and ship software.

You will join the AI-SDLC team, which builds internal platforms and tooling that enable AI agents to operate across the development lifecycle. Your mission will be to ensure that security is integrated from the ground up across these tools, pipelines, and agentic workflows—enabling secure-by-default product development at scale.

Responsibilities

• Ensure security is embedded into CI/CD pipelines by delivering scalable, automated tooling and integrated security checks (SAST, DAST, SCA, secret scanning);
• Enable secure-by-default development by designing and implementing automated, policy-driven security review workflows;
• Establish robust security guardrails within AI-assisted development and agent workflows to reduce risk while maintaining developer velocity;
• Reduce risk exposure by proactively identifying, assessing, and driving remediation of application security vulnerabilities;
• Strengthen application security posture by leading threat modeling and security assessments for new features and architectural changes;
• Improve detection and response capabilities through the development of automation, tooling, and streamlined vulnerability management processes;
• Communicate security findings and best practices effectively to both technical and non-technical stakeholders.