UST
Website:
ust.com
Job details:
Role Description
Role: Cloud DevSecOps Engineer
Department: Infrastructure (reporting to Director of Cloud Infrastructure and Architecture)
About The Role
We are looking for an experienced Cloud DevSecOps Engineer to join our Cloud Infrastructure team, you will be the critical bridge between our Security, DevOps, and Engineering teams.
While our dedicated Security team identifies vulnerabilities, your primary focus will be leading the charge on
remediating them. You will work hands-on to ensure our AWS environment is secure, robust, and compliant by design. If you are passionate about securing cloud infrastructure at scale and deeply familiar with Terraform Infrastructure as Code (IaC), this is the role for you.
Team Structure
You will report directly to the Director of Cloud Infrastructure and Architecture but will maintain a tight, collaborative feedback loop with the
Security team (who will feed you vulnerability reports) and our
DevOps/Engineering teams (whom you will partner with to implement and deploy fixes).
Key Responsibilities
Vulnerability Remediation: Take ownership of security vulnerabilities raised by the Security team and lead the end-to-end remediation process in collaboration with DevOps and Engineering.
AWS Security Posture: Proactively identify opportunities to harden and improve the overall security posture of our AWS platform (specifically around EKS, EC2, EBS, S3, CloudFront, and WAF).
Infrastructure as Code (IaC) Security: Ensure all infrastructure remains strictly managed via Terraform, reviewing and writing secure, compliant modules.
Tooling & Scanning: Utilize
Aikido to continuously scan our cloud environment and Terraform code for misconfigurations, acting on s promptly.
Cross-Functional Collaboration: Act as the DevSecOps Subject Matter Expert (SME), fostering a culture of "security by design" within the engineering teams without slowing down deployment velocity.
What We Re Looking For
Extensive AWS Experience: Deep, hands-on knowledge of AWS core services and security primitives, with specific expertise in EKS, EC2, EBS, S3, CloudFront, and AWS WAF.
Terraform Mastery: Proven experience writing, reviewing, and securing Infrastructure as Code using Terraform.
DevSecOps Tooling: Hands-on experience with cloud and IaC security scanning tools (experience with
Aikido is a massive plus, but experience with similar tools like Checkov, TFSec, or Prisma Cloud is highly relevant).
Remediation Focus: A track record of actually fixing vulnerabilities, not just finding them. You know how to patch, upgrade, or reconfigure cloud environments safely.
Communication Skills: Strong ability to translate security requirements into actionable engineering tasks and build consensus across different technical teams.
Nice to Have
Relevant AWS Certifications (e.g., AWS Certified Security - Specialty).
Experience with container security (specifically within Kubernetes/EKS environments).
Skills
aws devops,aws,terraform,eks,aikido,tfsec,devsecops,container security
Click on Apply to know more.