Senior DevSecOps Engineer
Remote
Applications have closed
NEAR
"NEAR isn’t just a Layer 1 blockchain — it’s the Blockchain Operating System for an Open Web. Create and discover decentralized apps, and help build the future of the web, today."About Pagoda
Pagoda is the first-ever Web3 Startup Platform where developers and entrepreneurs can build, launch, and operate new blockchain-based products and services. As a primary builder of the NEAR Protocol, Pagoda delivers capacity, velocity, simplicity, and affordability needed to power tomorrow’s Web3 startups.
We are looking for an innovative, empathetic, and productive person who is excited about building the next generation of crypto startups, feels comfortable challenging opinions, and most importantly who shares with us the same desire to make the web free again.
We encourage people of all backgrounds to apply. Pagoda is committed to creating an inclusive culture, and we celebrate diversity of all kinds.
What You’ll Get For Joining:
- Unlimited Annual Leave / PTO
- $2,000 Yearly Continued Education Reimbursement
- $2,000 Home Office Setup Reimbursement
- Yearly Company Retreats (2022 in Lisbon!)
- Paid Holiday Week: the last week of the year
- Paid Summer Wellness Week: the first week of July
- Mental Health Support and access to licensed therapists through Spill, 100% paid by us
About The Role:
The Pagoda Security team is looking for a Senior DevSecOps Engineer to join their growing team. This is a new role where you will have the freedom to influence many key technical security decisions and really make a difference.
Reporting to the Director of Security Operations, this role will combine programmatic and hand-on aspects of DevSecOps.
What You'll Be Doing:
- A ‘hands on’ role, selecting, developing and maintaining the right security tools to provide high levels of security assurance across Pagoda
- Establish DevOps standards and procedures for bringing software into production into AWS, GCP, and other platforms.
- You will champion security throughout the engineering and site reliability teams so that security tooling is simple, scalable and highly effective for engineers and developers to use.
- Automation, guardrails, and reporting over manual configuration and intervention is a primary goal.
- Analyze applications, systems, and infrastructure to identify key security risks and recommend and drive security improvements
- Maintain, review, propose and implement security improvements to existing infrastructure, tools and processes–bringing them up to a common, established standard
- Work closely with a variety of internal and external stakeholders to design and define secure architectures, processes, and patterns
- Establish reference guidelines and patterns that can be re-used for front-end and cloud-deployed systems across the NEAR ecosystem and for those projects building with Pagoda; resulting in Web3 community security awareness and improvements..
What We're Looking For:
- Technical related Bachelor’s Degree, Computer Science or Engineering or equivalent experience is a must
- Ideally you’ll have 5+ years of experience in a modern Security DevOps environment
- Deep understanding of security vulnerabilities and mitigations, and an ability to model threats and risks for large, complex systems
- Advanced knowledge and understanding of security engineering, system, and network security, authentication and security protocols, cryptography, or application security
- Good understanding of cloud infrastructure and platforms such as AWS, GCP, and their various XaaS and serverless offerings
- Experience integrating security requirements into the CI/CD pipeline
- Experience automating security tools
We'd Love If You Have:
- Familiarity with other crypto or blockchain technologies
- Experience working at a startup
Here’s What Our Interview Process Looks Like:
Depending on calendar availability, from the first stage to the final stage, we do our best to keep the entire process to under three weeks. Our interviews take place via Zoom and typically consists of the following stages:
- Internal Recruiter Call (30 to 45 minutes)
- Meet with the Hiring Manager (30-60 minutes)
- Technical Interviews (2 x 60 minutes)
- Culture & Values Interview (30 to 45 minutes)
Please let us know if you require any special requirements for your interview and we’ll do our best to accommodate.
Ideal Location For This Role
This is a fully remote role, so that your timezone matches or overlaps with our leadership for this role, you’ll ideally be located in United States.
Our Values at Pagoda
Innovate and deliver—so our customers can build. We deliver new solutions for real, often urgent, customer needs. Practical over hype. We uphold our standards of excellence while balancing velocity and pragmatism.
Focus precious time and energy on what matters. We are intentional about where we aim our resources. We channel our talents to focus on the critical missions in order to make an outsized impact.
Favor ownership, agency and action. Everyone is an owner. As individuals, we are responsible and accountable for our work. We empower builders to make decisions and innovate without the burden of unnecessary roadblocks or complexity.
Work as a team of empathetic humans. We practice mutual respect, open communication, humility and collaboration. We are kind and empathetic. We are welcoming towards diversity in all forms, including differences of perspective.
Never break trust. Integrity is rare—and valuable—in this space. Reputation is hard to build and easy to break.
Tags: Application security Automation AWS Blockchain CI/CD Cloud Computer Science Crypto Cryptography DevOps DevSecOps GCP Network security Vulnerabilities
Perks/benefits: Home office stipend Startup environment Team events Unlimited paid time off Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open ISO 27001-related jobs
- Open Clearance-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs