DevSecOps Engineer

    • iSeatz
  • Sacramento, CA
  • Posted 1 day ago | Updated moments ago

Overview

On Site
Hybrid
$91,000 - $120,000
Full Time

Skills

Commerce
Exceed
Information security
Bridging
DevOps
SAFE
Documentation
Collaboration
Continuous improvement
Writing
DevSecOps
FOCUS
Software development methodology
Scripting
Python
GitHub
Cloud computing
Continuous integration
Continuous delivery
Orchestration
Docker
Kubernetes
Problem solving
Management
Terraform
Ansible
Amazon Web Services
Threat modeling
Risk assessment
Regulatory Compliance
PCI DSS
System on a chip
Software development
Software deployment
Ruby
Rust
Programming languages
Encryption
Authentication
Access control
Employee engagement
Tandem
Operations
Human resources
Leadership
IMPACT
Innovation
Accountability

Job Details

Job Description

Job Description

Our Mission

iSeatz provides digital commerce and loyalty tech solutions that enable travel and lifestyle bookings to global customers including American Express, Expedia, and IHG Hotels. Our proprietary platform processes over $9B per year in transactions.

We have a history of long-term trusted relationships and innovation that drives tangible value to our customers through a customizable, scalable, and secure platform, a global third party marketplace, and loyalty integration.

We aspire to put our customers at the heart of every decision and exceed their expectations with best-in-class solutions and business-value innovations.

What you ll do

The DevSecOps Engineer reports to the Information Security Manager and works with Security Engineers, DevOps, software developers, and other IT staff members to manage security code releases.

In this role, you will be deeply involved in bridging the gap between development, operations, and security, to ensure the rapid, safe, and secure delivery of code, as well as integrating and automating security protocols and deployment processes.

Your Impact

  • Integrate security into CI/CD pipelines to ensure secure deployment practices and minimize vulnerabilities.

  • Conduct security code reviews to catch bugs and flaws before the deployment phase.

  • Manage security measures for containerized services using Docker, Kubernetes, and similar technologies.

  • Develop and maintain documentation related to DevSecOps processes and tools.

  • Security patching as part of the deployment process.

  • Monitor security tools in the deployment pipeline and adjust as necessary to improve automation and effectiveness.

  • Collaborate to enforce standards and to identify and mitigate security risks.

  • Stay current with new technologies and cloud trends, applying them to drive continuous improvement across the organization.

  • Assist software development in writing code to remediate vulnerabilities.

What you bring to the table

  • Proven experience in DevSecOps and software development with a strong focus on security.

  • Strong development background and familiarity with secure software development lifecycle (SDLC) methodologies.

  • Knowledge of scripting languages such as Python.

  • Experience with tools like GitHub Actions, and familiarity with AWS Cloud platform.

  • Proficient in implementing and managing CI/CD pipelines.

  • Understanding of containerization and orchestration technologies, including Docker and Kubernetes.

  • Excellent problem-solving skills and the ability to think analytically.

  • Strong organizational and time management skills, with the ability to prioritize tasks and meet deadlines.

Bonus points

  • Experience with infrastructure as code (IaC) using Terraform, Ansible, AWS CDK, or similar.

  • Knowledge of Threat Modeling and risk assessment techniques.

  • Experience with compliance regulations such as PCI-DSS, SOC2, NIST, etc as they relate to software development and deployment.

  • Strong experience with the Ruby and Rust programming languages.

  • Strong understanding of encryption, authentication, and access control mechanisms.

Location

This role is remote-first and can be located anywhere inside the continental United States. iSeatz is a New Orleans-based company with Central Time Zone business hours, but feel free to work from your home office, from the beach, or from the cottage you rented for the summer!

What we bring to the table

iSeatz is among the most prominent tech employers in New Orleans. With employee engagement and community impact at the forefront of our culture, we have been named a 2020 Top Workplace by nola.com and honored as one of the CityBusinesses Best Places to Work since 2008, including a 1st place award in 2020, at the height of a global pandemic.

iSeatz is committed to ensuring all employees are given every opportunity to succeed and grow within and beyond their current roles and responsibilities. We work diligently to build and maintain trust among our workforce in everything we do, beginning with fostering an autonomous and thought-provoking work environment.

Micromanagement does not have a place at iSeatz. You will be trusted to use the knowledge and experience that brought you to iSeatz in tandem with the support of your manager and those around you, as needed, to deliver a high-quality end product.

We value a diverse workplace

We are committed to building and maintaining a culture of support, awareness, and sensitivity about the importance and impact of our differences and leverage these differences to build a stronger iSeatz.

If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact the People Operations Team at humanresources@iseatz.com.

A note about joining our workforce

At iSeatz, we re looking for candidates who are genuinely excited about joining our fast-paced and motivated team. If you re not enthusiastic about the opportunity to be a significant contributor; to lead with confidence, discipline, impact, thoughtfulness, innovation, and accountability; and to bring your passion and drive for this specific role to the table, we ask that you kindly refrain from applying. On the other hand, if this all sounds like you, we can t wait to hear from you! Come help us shape the future of the travel and loyalty tech industry.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.