Security Engineer, DevSecOps - United States

JumpCloud is looking for a Security Engineer on the DevSecOps team focusing on building and maintaining infrastructure, software, and automation to monitor and mitigate attacks and vulnerabilities across JumpCloud products and services. You will become a member of the team responsible for ensuring JumpCloud products' integrity and keeping JumpCloud users safe. About the team: As a Security Engineer on the DevSecOps Team, you will be responsible for designing and developing software solutions for protecting data and infrastructure deployed into the cloud. The Security organization is composed of SecOps, GRC, and DevSecOps functions, but all functions work closely together so you will be exposed to many different security areas. What you will be doing: • Build and maintain infrastructure, including custom software and vendor integrations, to support Engineering’s Security needs (Product Security and Infrastructure Security) • Create infrastructure and SaaS policy enforcement automation and reporting • Set up data ingestion, as needed, for the SIEM or other Security tooling • Perform threat model reviews of product features and their associated architectures • Provide guidance to service/feature teams about secure software design Necessary skills: • 2-3 years of experience in the field of security engineering with a strong background and experience in software development and architecture • Proficient in writing Golang or Python (more than simple scripts) • Experience with either AWS or GCP • Experience with Terraform • Experience with GitHub Actions • Excellent written and oral communication Personal characteristics we are looking for: • Views security as an enabler, not an inhibitor to innovation • Results oriented and self driven • High level of integrity • Ownership and accountability • Clear communication • Creative problem solver • Passionate about security Important: • You must be available for on-call (after hours) duties for any internal tools/services this team owns • You must be willing to support the Security Operations team during incidents in performing ad-hoc queries, forensics, etc. Apply tot his job