DevSecOps Engineer
Palo Alto, California, United States
Universal Tennis
Connecting tennis and pickleball players globally through level-based play, ratings, and innovative tournaments and events.Universal Tennis is on a mission to grow the sport of tennis by connecting players globally through level-based play, innovative events, and a digital marketplace. We are both a technology and tennis event company. Our innovative tools and technology make tennis better for all players and providers, with our gold-standard UTR tennis rating system at the core, powering level-based play around the globe. We proudly operate the UTR Pro Tennis Tour with Federations and venues to support aspiring pro players and provide new pathways for competitive juniors. To learn more, Watch this Video and visit www.universaltennis.com.
The Company is Silicon Valley based, profitable, high-growth and backed by some of the leading investors in tennis, sports, technology and media, including Ken Hao (Chairman, Silver Lake Partners); Larry Ellison (Co-founder and CTO of Oracle); TEAM8, the creator and principal owner of Laver Cup and sports company founded by Roger Federer, Tony Godsick, Ian McKinnon and Dirk Ziff; Novak Djokovic (20-time Grand Slam Champion); Mark Leschly (CEO of Universal Tennis, Founder & Managing Partner of Iconica Partners, Managing Partner of Rho Capital Partners); Tennis Channel / Sinclair; Tennis Australia (operators of the Australian Open); and many others.
We are an equal opportunity employer and we value diversity. We are committed to an inclusive environment. All candidates will be considered on the basis of qualifications, merit and business needs without regard to race, color, religion, national origin, age, non-qualifying mental or physical disability, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, veteran status, or any other characteristic protected by applicable law.
The Role
Universal Tennis is looking for a DevSecOps Engineer to automate the integration of security at every phase of the software development lifecycle, from initial design through integration, testing, deployment, and software delivery. You will also help improve the development experience for the engineering team by automating infrastructure, building CI/CD pipelines, and improving the observability of the platform. This role will report to the Platform Engineering Manager. If you have a strong foundation and passion as a DevSecOps Engineer, believe in the power of continuous improvement, we may be the place for you!
- Integrate security and compliance into our daily engineering operations through proactive reviews, vulnerability scans, remediation, etc.
- Lead the organization to compliance with relevant standards such as SOC2 and GDPR and promote the company’s security posture within the organization
- Improve the security of our platform by making proactive improvements to our infrastructure e.g. WAF configuration, securing virtual networks, secrets management, etc.
- Be a security champion on the engineering team by training others on application security best practices to prevent common vulnerabilities such as the OWASP top 10
- Own and improve the organization’s response to incidents and problems when they occur.
- Work with our engineering teams to establish and maintain SLOs, alerts, and dashboards for the Universal Tennis platform
- Create and maintain terraform to manage test and production environments
- Create and maintain CI/CD pipelines and other automation tools
- Participate in on-call rotations to support our infrastructure and direct product incidents to the appropriate response team
- Conduct root cause analysis and blameless post-mortems
Requirements
- 7+ years overall engineering experience and 5+ years as a DevSecOps engineer
- Experience leading organizations into SOC2 or similar compliance and implementing and maintaining security policies, standards, training and best practices
- Experience with Azure preferred, including Azure Pipelines or other CI/CD tool
- Strong knowledge and proven experience with security principles as it relates to applications, infrastructure, and data
- Familiarity with C# and .Net
- Experience with New Relic, OpsGenie or other observability and alerting platforms
- Experience with SQL Server or other relational database
- Experience with Elasticsearch a plus.
Salary
A reasonable estimate of the current base salary range is $120,000 to $180,000. The final base salary for this role will take into account the wide range of factors that are considered in making compensation decisions, including but not limited to: skill sets, experience and training and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic location differential associated with where the position will be filled.
Benefits
Universal Tennis is headquartered in Palo Alto, CA but this position is fully remote, US-based. We are offering a competitive salary and equity compensation package with flexible working hours and generous PTO. Our benefits include:
- Health Care Plan (Medical, Dental & Vision)
- Retirement Plan (401k)
- Paid Time Off (Unlimited Vacation & Sick plus Public Holidays)
- Family Leave (Maternity, Paternity)
- Short Term & Long Term Disability
- Work From Home
Tags: Application security Automation Azure C CI/CD Compliance DevSecOps Elasticsearch GDPR Oracle OWASP RDBMS SDLC SLOs SOC 2 SQL SQL Server Terraform Vulnerabilities Vulnerability scans
Perks/benefits: 401(k) matching Career development Competitive pay Equity Flex hours Flex vacation Health care Medical leave Parental leave Startup environment Team events Unlimited paid time off
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs