DevSecOps Architect (Remote Option)

Redwood City, CA, United States

Applications have closed

Job Description

As a DevSecOps Architect, you will be responsible for overall design and direction of eCommerce Security Engineering across all our applications.

This role is responsible for building platforms and frameworks to create consistent, verifiable, and automatic management of applications and infrastructure between non-production and production environments. Leading a team of DevOps Engineers, you will utilize technical expertise and experience in driving the design and automation of processes to support the CI/CD of digital technology, enterprise systems, microservices applications and database services along with providing guidance and/or implement mitigation to address discovered abuse patterns using modern security tools, and work with developers and performance engineers to assist in securing the solution. This role is critical in the development and on-going security posture for digital commerce applications and accountable for identifying and implementing our security principles and best practices to maintain application security, vulnerability scanning, create processes for analyzing web traffic to identify patterns of abuse and address the impact of non-human HTTP traffic on both the performance and security of the application by applying blocks, rate limits, tarpits, or other remediation.

As a DevSecOps Architect, you will report to our Director of Strategy & Architecture. This role can work remote from anywhere in the U.S. or locally in our Redwood City, CA office location. Our local teams are expected to work in a hybrid model, which includes two days in-office.

What you’ll do:

  • Analyzing, developing, and recommending improvement of software security infrastructures and standards
  • Ensures direct and regular engagement with product/software development and infrastructure teams to achieve security compliance and security requirements within the organization
  •  Identifies and corrects data security issues and takes appropriate actions in a multiple computing platform environment. This may involve delivering and promoting secure coding techniques, assessing vulnerabilities, providing remediation guidance, designing multiple security technologies such as cloud security, secure network design, multiple-level security applications, and ensuring compliance with PCI-DSS, GDPR, HITRUST, NIST, SOX, SOC and other related requirements of regulation
  • Provides security guidance on infrastructural designs and organizes numerous risk assessments to identify and eliminate application/product threats
  • Automate software maintenance of applications like Jenkins, Sonarqube, etc. which are part of CI/CD pipeline
  • Design and maintain cloud-based solutions on public cloud
  • Lead problem-solving or brainstorming activities related to issues, tasks, plans, and experiments
  • Lead competence improvement and growth plans of the team and the system

What you bring to the table:

  • Minimum of eight (8) years relevant DevOps experience
  • Minimum of eight (8) years of architectural/ lead experience
  • Bachelor’s degree or higher in Computer Science, Computer Engineering, or related technical degree
  • Must have experience in the design and implementation of fully automated Continuous Integration, Continuous Delivery, Continuous Deployment pipelines and DevOps processes for Agile projects
  • Must have experience in any public clouds leveraging Terraform.
  • Knowledge of IP networking, VPN's, DNS, load balancing and firewall
  • Experience defining, implementing, and engineering network environments compliant with information security policies, procedures, and standards like SOC2, GDPR, HIPPA, ISO 27001
  • Analyzing security systems, audits, and seeking improvements on a continuous basis
  • Developing, documenting, and maintaining DevSecOps implementation for the team
  • Integrating DevSecOps tools and services (code repository, artifact repository, source code analyzer, security scanning, testing tools, and an orchestrated integration and delivery platform) to enable automated application building, testing, and securing of our deployments
  • Experience with monitoring and log aggregating frameworks such as Kafka, Logstash, Splunk, Elasticsearch, and Kibana
  • AWS/Azure Certification(s) such as Solutions Architect Pro, DevOps Engineer Pro, SysOps Admin, Developer Associate
  • Strong presentation, verbal, and written communications skills
  • Must have experience in systems automation, orchestration, deployment, and implementation, as well as have skills in scaling distributed data systems
  • Experience with eCommerce platforms is desirable
  • Ability to work with offshore teams & development partners is a must have.
  • Strong working ability with cross functional teams

Notes: This is a full-time, permanent position with benefits. Please submit a cover letter and resume.

About Us: Balsam Brands is a multi-brand eCommerce retailer with roots in holiday and home décor. We strive for excellence in everything we do and present a unique opportunity to those who are seeking to have a meaningful impact in a fast-paced, high-energy environment. We love to reimagine eCommerce and retail in ways that thrill our customers, and to leave a lasting impact on the world around us. We have fast-growing teams in the Bay Area, Boise, Manila, and Dublin.

The company's outward focus on building trusted consumer brands along with its internal focus on excellence and being a great place to work have propelled it to consistent, rapid growth.

At Balsam Brands, we strive to offer a competitive compensation and benefits package. For permanent, full-time team members, this includes:

  • Competitive compensation, including a cash-based incentive plan
  • Comprehensive Medical, Dental, and Vision coverage, with 100% of insurance costs covered for team members, and 85% covered for dependents
  • Medical, transit, dependent care FSA
  • Company-paid life and AD&D insurance
  • Short and long-term disability insurance
  • 401(k) with dollar-for-dollar company match up to $4,000
  • Employee Assistance Program (EAP) and other mental health and wellness perks
  • Paid holidays, annual shutdown week, PTO, and volunteer time-off (VTO) packages
  •  Annual continuous learning benefit up to $1,000 per person, per fiscal year
  •  Up to $300 flexible reimbursement to support setup of new team member's work-from-home environment
  •  Valuable extras: identity theft protection, subsidized parking, subsidized gym membership

The base pay range for this position is: $121,000 – $206,000. Where an individual falls within that range will vary based on several factors including geographic location and may vary depending on candidate qualifications and experience, applicable skills, and other job-related factors. We benchmark our pay ranges against current external data sources and regularly review compensation for our team members. Balsam Brands is committed to providing our team members with an internally fair, externally competitive, and fiscally prudent total compensation package administered in a simple and consistent manner.

 

At Balsam Brands, we strive to build a diverse, equitable, and inclusive team to fulfill our purpose to create joy together. Balsam Brands is proud to be an equal opportunity employer. We encourage people from all backgrounds, ages, abilities, and experiences to apply. We do not discriminate on the basis of race, ethnicity, religion, national origin, citizenship, marital or family status, disability, sexual orientation, gender identity or expression, pregnancy or caregiver status, veteran status, or any other legally protected status. We will ensure that individuals with disabilities are provided reasonable accommodations to participate in the job application and interview process, to perform essential job functions, and to receive other benefits and privileges of employment.

#DICE

 

Additional Information

All your information will be kept confidential according to EEO guidelines.

Tags: Agile Application security Audits Automation AWS Azure CI/CD Cloud Compliance Computer Science DevOps DevSecOps DNS E-commerce Ecommerce Elasticsearch Firewalls GDPR HITRUST ISO 27001 Kafka Microservices Monitoring NIST Risk assessment SOC SOC 2 SonarQube SOX Splunk Strategy Terraform VPN Vulnerabilities

Perks/benefits: 401(k) matching Career development Competitive pay Fitness / gym Flex hours Flex vacation Health care Home office stipend Insurance Medical leave Startup environment Team events Wellness

Regions: Remote/Anywhere North America
Country: United States
Job stats:  16  1  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.