DevSecOps Engineer
San Francisco, CA
Tecton’s founders developed the first Feature Store when they created Uber’s Michelangelo ML platform, and we’re now bringing those same capabilities to every organization in the world.
Tecton is funded by Sequoia Capital, Andreessen Horowitz, and Kleiner Perkins, along with strategic investments from Snowflake and Databricks. We have a fast-growing team that’s distributed around the world, with offices in San Francisco and New York City. Our team has years of experience building and operating business-critical machine learning systems at leading tech companies like Uber, Google, Meta, Airbnb, Lyft, and Twitter.
This role is part of our growing Security team, responsible for securing Tecton’s product and the company as a whole. You'll have the unique opportunity to shape our security practices from the ground up, ensuring our product remains resilient and protected against emerging threats. You will collaborate with cross-functional teams to embed security seamlessly into our products and protect not only Tecton, but also our customers.
Responsibilities
- Work closely with Tecton’s DevOps team to implement security controls to satisfy CIS AWS and Kubernetes benchmarks.
- Define and implement security standards to secure Tecton’s SDLC.
- Assist DevOps team in improving Tecton’s Zero Trust access controls across cloud infrastructure.
- Assist in improving Tecton’s vulnerability management program.
- Triage emerging vulnerabilities and assess their impact on Tecton.
- Triage and manage vulnerability remediation submitted through Tecton’s vulnerability disclosure process.
- Assist Tecton’s DevOps team in creating a secure image pipeline for Tecton deployments.
Qualifications
- 3+ years of experience in a security role.
- 1 - 3 years of experience in a vulnerability management program for a cloud-native, containerized environment.
- Experience with industry security frameworks such as NIST or CIS.
- Experience with infrastructure-as-code tools such as Terraform, Ansible, Puppet
- Experience securing AWS services
- Experience hardening Kubernetes deployments
- Fluent in one or more programming languages, such as Python or Golang
- Strong and effective verbal and written communication skills
This employer participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Ansible AWS Cloud Databricks DevOps DevSecOps Golang Kubernetes Machine Learning NIST Puppet Python SDLC Snowflake Terraform Vulnerabilities Vulnerability management Zero Trust
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs