DevSecOps Engineer
Remote
Applications have closed
Ceros
Ceros provides tools and services that empower companies to create interactive content with unparalleled ease and efficiency, driving customer engagment to new levels.About Ceros
Join us as Ceros embarks on the next chapter in our mission to unlock creativity. Ceros is evolving into the essential design platform for professional creatives the world over. Our suite of cloud-based tools empower professional creators to push the boundaries of creativity, while our collaboration tools make it easy to get everyone involved in the process.
Today, our products power some of the most engaging experiences on the web. In 2021 alone, interactive content created with Ceros Studio — from landing pages and pitch decks to interactive social media — has been viewed more than half a billion times. In the meantime, more than 3 million comments have been added to digital content using Markup, our new visual collaboration tool.
Working at Ceros means having an impact at scale. Our products and services are leveraged by top tier brands such as Mashable, Bloomberg, Red Bull or Pinterest and are loved by more than 500,000 users. And we are building something even bigger and better: the creative operating system of the future.
We are backed up and well-funded by top-tier investors including Sumeru Equity Partners, Grotech Ventures, Greycroft, and Starvest Partners.
We are remote first forever with a 4½ day workweek that finishes every Friday at 1pm.
The Products
The Ceros Studio (https://ceros.com) is built in Javascript/Typescript on the frontend supported by multiple backends using PHP and NodeJS. The infrastructure uses Docker, Jenkins, and Cloudformation. We use a myriad of AWS offerings. We also use Okta for authentication and Fastly as a CDN. We’ve begun a migration to Terraform and are considering a migration from ECS to Kubernetes as we add services.
The DevOps team also supports Markup (https://markup.io), which is built in React and Typescript on the frontend and Typescript on the backend. Its infrastructure uses Terraform and Kubernetes on AWS.
The Team
As part of the Ceros product team, you’ll be working with a cross-functional group of the most
talented people you’ve ever worked with. We hire only passionate and creative people with a
proven ability to execute, and every member of the team is equally responsible for moving the product forward.
We have a dynamic company culture that collaborates daily. We care deeply about the user
experience, and we debate passionately about our ideas. When you work at Ceros, you check
your ego at the door, and you aren’t afraid to be honest, especially to yourself. We take our jobs
seriously but ourselves not so much.
The DevOps team is the primary caretaker of the infrastructure, responsible for owning the infrastructure roadmap and pushing it forward. We’re constantly looking to improve the infrastructure to make it more stable, scalable, available, secure, more easily deployed, and easier to work with. We follow DevOps principles, which means we view ourselves as the deep knowledge and support for all the developers when they need to write infrastructure stories, helping to plan and review the infrastructure components of their stories.
The Role
As a DevSecOps Engineer, you’ll sit on one of our two DevOps teams. Your primary objective will be to build out and improve the necessary security controls for our systems, while adhering to DevOps principles and best practices. You’ll be called upon to aid in any investigative efforts related to potential or confirmed security breaches. You’ll act as a technical resource for the security committee and meet with them regularly to discuss the progress on security initiatives. Our ideal candidate will be a well-seasoned DevOps engineer with plenty of experience and a strong desire in securing application infrastructure.
Key Responsibilities
Security Focused
- Helping to identify, integrate, automate, monitor and improve security controls
- Assessment of current and future systems to ensure they adhere to security standards
- Investigation of potential security incidents to determine validity, impact and remediation
- Providing technical evidence from our systems for auditing purposes (SOC 2 & ISO 27001)
- Providing assistance with the completion of customer security and technical due diligence questionnaires
- Participation in weekly security committee meetings to stay knowledgeable about the state of security across all of Ceros
General DevOps
- Evaluating, testing, and building new infrastructure tools and technology
- Writing detailed planning documents on stories so your teammates can assess the proposed approaches to a story, offer suggestions of approaches missed, and we can all agree on where to go from there
- Writing maintainable code (probably goes without saying)
- Carrying out and being on the receiving end of intense code review sessions from your peers who hold your work (and their own) to the highest of standards
- Helping the feature development teams write infrastructure code, and reviewing said code
- Writing clear documentation around infrastructure code and development tooling so that it’s easy to understand, use, and modify
- Working closely with the rest of the team to deploy new releases and data migrations without hiccups
- Performing blameless post-mortems whenever there’s an unplanned outage.
- Supporting the development infrastructure so that feature teams and QA can collaborate on shared environments
- And finally, ensuring the availability of the Ceros platform
Practical stuff we anticipate you having:
- Experience with CI/CD pipelines, configuration management, infrastructure orchestration, containerization, linux administration... you know, DevOps.
- In particular, experience with Docker, Terraform, Kubernetes, and AWS.
- Experience implementing and automating application and network security controls including secure network configuration, server hardening and patching, static/dynamic analysis and vulnerability scanning, and threat monitoring
- An eagerness to write well documented, clear code. You understand that infrastructure code is still code and the principles of documentation and organization that apply to every other kind of code, still apply here.
- The wisdom of experience. You understand that principles and design patterns are important guidelines, but not hard and fast rules. You know when to apply a pattern and when not to, when to hold fast to a certain principle, and when to let it go. You understand that sometimes we can’t let the perfect be the enemy of the good and we’ll have to take on tech debt, but when we do, it should be with consideration and intention (and should be documented).
- An eagerness to learn. We’re looking for engineers who are able and eager to keep up with the pace of the rapidly evolving fields of both DevOps and Software Security.
- A passion for software to be more secure. You understand the importance of the security of systems and ultimately customer’s data, stopping at nothing to protect it all.
Key things to know
- We want you to start ASAP
- This is a full-time position
- This is a remote first role but we are primarily in the U.S. Eastern time zone and prefer candidates who can have an overlapping work schedule with the rest of the team
Benefits
- Competitive Salary
- Stock options
- Premium health insurance
- 401K match
- Paid parental leave
- Unlimited vacation days
- Wellness Fridays (Half Day Fridays)
- Excellent gear (Macbook Air, external monitor, etc.)
- Stipend for the home office set up
- Growth and Learning opportunities within the company
- Virtual experiences in which Cerosians can collaborate, educate, and create social connections with one another
At Ceros, we are deeply committed to the recruitment, retention, and growth of diverse talent; uniting people from unique backgrounds in our shared passion for unlocking creativity through technology.
As an equal opportunity employer, we prohibit any unlawful discrimination against a job applicant on the basis of their race, color, religion, veteran status, parental status, gender identity or expression, transgender status, sexual orientation, national origin, age, disability or genetic information. We respect the laws enforced by the EEOC and are dedicated to going above and beyond in fostering diversity across our company.
Tags: Audits AWS CI/CD Cloud DevOps DevSecOps Docker ISO 27001 JavaScript Kubernetes Linux Monitoring Network security Node.js PHP SOC 2 Terraform TypeScript
Perks/benefits: 401(k) matching Career development Competitive pay Equity Gear Health care Home office stipend Insurance Parental leave Unlimited paid time off Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs