Startup Jobs
Post a Job
CloudQuery

Senior DevSecOps Engineer

Tel Aviv-Yafo , Israel
full-time

AI overview

Lead the design and implementation of secure multi-cloud infrastructure while embedding security into CI/CD pipelines and ensuring compliance with major frameworks like SOC 2 and GDPR.

The Role

We are looking for a Senior DevSecOps Engineer to lead the security and infrastructure of our high-performance data integration platform. You will oversee the security architecture across our multi-cloud environment (AWS & GCP) and ensure our architecture runs securely and efficiently at scale. You will bridge the gap between engineering and security, embedding robust defenses directly into our infrastructure and deployment workflows.

Responsibilities

  • Secure Infrastructure: Design, implement, and manage secure, scalable cloud infrastructure across AWS and GCP. Enforce security best practices, ensuring flexibility and robustness.
  • Application Security: Lead security initiatives for our architecture. Implement comprehensive protection mechanisms against web threats and vulnerabilities, and establish robust strategies for managing credentials and sensitive data securely across the platform.
  • DevSecOps & CI/CD: Architect and optimize CI/CD pipelines (Specifically GitHub Actions), embedding automated security gates and checks to catch vulnerabilities early in the software delivery lifecycle.
  • Compliance & Governance: Lead the implementation and maintenance of security controls for major frameworks such as SOC 2, GDPR, and ISO 27001.
  • Observability: Define and maintain a high-level monitoring and alerting strategy to detect security anomalies and performance bottlenecks, ensuring complete system visibility

Requirements

  • DevOps Expertise: 5+ years of experience managing production environments with a deep understanding of AWS (security models, permissions, and core services).
  • CI/CD Automation: Strong proficiency with GitHub Actions for building and maintaining automated pipelines
  • Compliance Experience: Proven experience implementing or maintaining compliance with SOC 2, GDPR, or ISO 27001 standards.
  • Infrastructure as Code: Proven experience with Terraform (or equivalent) for managing complex stateful environments.
  • Configuration Management: Experience with tools like Ansible (or equivalent automation/init scripts).
  • Observability Tools: Hands-on experience with standard monitoring stacks like Grafana, Prometheus, or similar.
  • Scripting: Proficiency in Go, Python or Bash for automation and tooling.
  • Language: Fluent English (written and verbal) is required to support our distributed, international team.

Advantages (Bonus Points)

  • Kubernetes: Experience managing and securing Kubernetes clusters (Managed or Self-Hosted).
  • ClickHouse: Experience managing or optimizing ClickHouse (or similar high-performance OLAP databases).
  • Background in managing high-throughput data pipelines.
 CloudQuery

CloudQuery is a developer-first cloud governance platform that consists of three main components that can be used together or stand alone. Data Pipelines, Cloud Asset Inventory and CSPM (Cloud Security Posture Management).

Website LinkedIn
View all jobs
Ace your job interview

Understand the required skills and qualifications, anticipate the questions you may be asked, and study well-prepared answers using our sample responses.

Operations Engineer Q&A's
Report this job
Apply for this job