Senior DevSecOps Engineer

Posted 4 Days Ago
Be an Early Applicant
Remote
Senior level
Information Technology
The Role
The Senior DevSecOps Engineer will design, implement, and manage security solutions throughout the software development lifecycle while promoting best practices in security among engineering and DevOps teams. The role involves ensuring robust API security measures and fostering a shared responsibility for security across teams.
Summary Generated by Built In

About Airalo

Alo! Airalo is the world’s first eSIM store that helps people connect in over 200+ countries and regions across the globe. We are building the next digital service that revolutionizes the telecom industry. We are a travel-tech company and an equal-opportunity environment that values and executes diversity, inclusion, and equity. Our team is spread across 50+ countries and six continents. What glues us together is our commitment to changing the way you connect.


About you

We hope that you care deeply about the quality of your work, the intrinsic worth of tasks, and the success of your team. You are self-disciplined and do not require micromanagement in terms of your skillset and work ethic. You do your best to flourish as an individual every day while working hard to foster a collaborative team environment. You believe in the importance of being — and staying — authentic, honest, positive, and kind. You are a good interlocutor with clear and concise communication. You are able to manage multiple projects, have an analytical mind, pay keen attention to detail, and love to get your hands dirty. You are cognizant, tolerant, and welcoming of vulnerabilities and cultural differences.


About the Role

Position: Full-time / Employee

Location: Remote-first

Benefits: Health Insurance, work-from-anywhere stipend, annual wellness & learning credits, annual all-expenses-paid company retreat in a gorgeous destination & other benefits


About Airalo

Alo! Airalo is the world’s first eSIM store that helps people connect in over 200+ countries and regions across the globe. We are building the next digital service that revolutionizes the telecom industry. We are a travel-tech company and an equal-opportunity environment that values and executes diversity, inclusion, and equity. Our team is spread across 50+ countries and six continents. What glues us together is our commitment to changing the way you connect.


About you

We hope that you care deeply about the quality of your work, the intrinsic worth of tasks, and the success of your team. You are self-disciplined and do not require micromanagement in terms of your skillset and work ethic. You do your best to flourish as an individual every day while working hard to foster a collaborative team environment. You believe in the importance of being — and staying — authentic, honest, positive, and kind. You are a good interlocutor with clear and concise communication. You are able to manage multiple projects, have an analytical mind, pay keen attention to detail, and love to get your hands dirty. You are cognizant, tolerant, and welcoming of vulnerabilities and cultural differences.


About the Role

Position: Full-time / Employee

Location: Remote-first

Benefits: Health Insurance, work-from-anywhere stipend, annual wellness & learning credits, annual all-expenses-paid company retreat in a gorgeous destination & other benefits

Responsibilities include, but are not limited to:

  • Design, implement, and manage security solutions across the entire software development lifecycle (SDLC), with a focus on automation and continuous integration/continuous delivery (CI/CD) pipelines, including robust API security measures and authentication protocols.
  • Champion security best practices within engineering, DevOps, SRE, and IT teams, fostering a culture of shared responsibility for security.
  • Proactively identify and remediate security vulnerabilities in applications, mitigating OWASP Top 10 vulnerabilities, infrastructure, and cloud services through threat modeling, vulnerability assessments, and penetration testing.
  • Develop and maintain security monitoring and alerting solutions to detect and respond to potential security incidents in real-time and prevent common cyber attacks such as DDoS, injection attacks, and credential stuffing.
  • Define and enforce secure coding standards and provide training and mentorship to development teams on DevSecOps principles.
  • Lead compliance initiatives by contributing to security policies, controls, and audit readiness for SOC 2, ISO 27001, GDPR, and other relevant regulations.

Must-haves:

  • Bachelor's degree in Computer Science, Cybersecurity, or a related field.
  • 5+ years of experience in DevSecOps, Security Engineering, or a similar role with a strong focus on cloud security.
  • 3+ years of hands-on experience with AWS services, including expertise in container orchestration, IAM, and security best practices.
  • 2+ years of experience with Kubernetes, including securing Kubernetes clusters and deployments.
  • Deep understanding of SAST, DAST, and container security solutions, API security testing tools, with experience implementing and managing these tools.
  • Proven experience in vulnerability assessment, threat modeling, and remediation techniques.
  • Experience with security incident response, including developing incident response plans and conducting post-mortems.
  • Proficiency in at least one programming language (Python, Go, Java, etc.) for automation and tooling.
  • Proficiency in infrastructure-as-code tools (e.g., Terraform) and CI/CD platforms (e.g., GitHub Actions, Jenkins).
  • Excellent communication and collaboration skills with the ability to work effectively in a fast-paced environment.

Good to have:

  • Relevant certifications (AWS Security Specialty, CISSP, CEH, Security+).
  • Experience with AI-driven security tools for anomaly detection.
  • Experience with Zero Trust principles and implementations.
  • Experience in securing PHP - Laravel/Symfony, JS - NuxtJS applications.
  • Proficiency in network security, firewall management, VPNs, and network segmentation.
  • Contributions to open-source security projects or communities.
  • Experience in the telecommunications industry with knowledge of eSIM and GSMA technologies.

If you are interested in this position, please apply via the link.


Please note that our Platform team works in the CET timezone, so candidates will need to reside in countries with the same time zone or similar to it and will need to already have permit to work in the country where they are based.


We sincerely thank all applicants in advance for submitting their interest in this opportunity. Airalo is an equal opportunity employer and values diversity, equity & inclusion. We do not discriminate on the basis of race, religion, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We are committed to providing reasonable accommodations upon request for individuals with disabilities throughout our job interview process.

Top Skills

Devsecops
The Company
HQ: Delaware, Delaware
179 Employees
On-site Workplace
Year Founded: 2019

What We Do

Bringing you pain-free connectivity while you travel.

As travelers ourselves, we’ve faced the painful situations of not finding Wi-Fi, losing the SIM card you’ve carefully taped to the back of your phone, and the horror of coming home to an unexpected roaming bill.

We believe that in today’s modern world, connectivity and freedom should be accessible to all. Airalo is here to take away the pain and stress of researching and seeking out the best roaming deal. We’re here to let everyone stay connected globally while keeping it simple and pain-free.

Airalo is the world’s first eSIM store for travelers to access over 200+ eSIMs at the most affordable, local rates from around the world, all via eSIM-compatible smartphone, tablet, or PC. Airalo offers you both connectivity and freedom - you’ll never have to carry multiple SIM cards or change your number again, no matter where you are in the world.

Similar Jobs

EDB Logo EDB

Staff Application Security Engineer

Artificial Intelligence • Cloud • Software • Database
Easy Apply
Remote
27 Locations
804 Employees

WeLocalize Logo WeLocalize

Linguistic Quality Check - Pharmacovigilance

Machine Learning • Natural Language Processing
Remote
28 Locations
2331 Employees

Edge Impulse Logo Edge Impulse

Interested yet not seeing the best fit?

Computer Vision • Machine Learning • Software
Remote
31 Locations
87 Employees
Remote
28 Locations
53 Employees

Similar Companies Hiring

Cloudflare Thumbnail
Software • Security • Information Technology • Cybersecurity • Cloud
San Francisco, CA
3900 Employees
Dynatrace Thumbnail
Software • Information Technology • Cloud • Big Data Analytics • Big Data • Automation • Artificial Intelligence
Waltham , MA
4700 Employees
LogicMonitor Thumbnail
Software • Machine Learning • Information Technology • Cloud • Artificial Intelligence
Santa Barbara, CA
1100 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account