About the Role

We seek a highly skilled DevSecOps Engineer with extensive experience in site reliability engineering, security automation, and cloud infrastructure. This role is critical to ensuring our systems are secure by design, highly reliable, and scalable. You will work closely with cross-functional teams to design, implement, and maintain security and reliability processes across our cloud environments.

Responsibilities

• Security Expertise: Serve as the security team's subject matter expert, providing insights and direction on best practices.
• Cloud Security Integration: Design and integrate robust security services across AWS environments.
• Vulnerability Management: Lead the shift-left vulnerability management (SAST) initiative to ensure secure-by-default cloud architecture solutions.
• Security Tools Implementation: Implement SAST, DAST, and IAST for core products, ensuring continuous security testing and monitoring.
• Architecture and Code Reviews: Conduct architecture reviews, code audits, and security assessments of core production infrastructure and product features.
• Security Tool Development: Build and deploy security tools and processes using Python or JavaScript to protect, monitor, and remediate critical infrastructure.
• Kubernetes Security: Secure Kubernetes workloads across multiple clusters and accounts, protecting containerized applications.
• Automation and IAM: Automate policy management using Infrastructure as Code (IaC) tools, audit cross-account entities, and enforce granular and least-privilege permissions for human and non-human accounts.
• Penetration Testing: Perform internal and external penetration testing to identify and mitigate vulnerabilities.
• Government Compliance: Apply your experience with FedRAMP and other government security standards to ensure compliance and security across our environments.
• Mentorship: Guide and mentor other engineers and team members in security best practices.

Site Reliability Engineering (SRE) Responsibilities

• SRE Discipline: Help build and enhance an effective SRE discipline to ensure optimal performance and proactive issue resolution.
• Observability & Reliability: Extend our culture of observability and reliability across infrastructure, data flows, and applications.
• Infrastructure Upgrades: Coordinate and lead cross-team infrastructure upgrades and improvements.
• Cross-Component Delivery: Collaborate across components and services to deliver high-impact, scalable, and reliable solutions.
• Agile Development: Engage in all phases of the agile software development lifecycle in a cross-functional team setting.
• On-Call Rotation: Participate in an on-call rotation to address only meaningful and critical issues.

Skills & Requirements

• Experience: 5+ years of experience in site reliability engineering, software development, and DevOps.
• Technologies: Hands-on expertise with container deployment (Docker, Kubernetes, ECS), IaC (Terraform, AWS CloudFormation), service mesh (Istio), and CI/CD pipeline (Jenkins).
• Metrics & Observability: Experience defining and managing SLI, SLO, and errors with tools like Datadog, Grafana, and Prometheus.
• Programming: Proficiency in Java, Go, Python, or similar languages.
• Databases: Strong knowledge of SQL and NoSQL (DynamoDB, MongoDB, Redis) databases.
• DevSecOps Principles: Understanding of DevSecOps, configuration management, and release engineering.
• Linux & AWS: Strong grasp of Linux/UNIX fundamentals and the AWS ecosystem.
• Security Tools: Experience with SIEMs, AWS Security Hub, Falco, and related technologies is a plus.
• Compliance: Experience in SOC 2 Type 2 compliant environments and fintech. FedRAMP experience is a plus.

Total Compensation Package

• The base salary range for this position is $115,000 - $150,000.
• This position is eligible for equity.
• We offer a 100% company-paid benefits package for employees and their families, including medical, dental, and vision. We also offer unlimited time off and future growth opportunities within the company. We strive to maintain a positive and fun environment for our employees where people can learn and grow with the company.
• This compensation and benefits information is based on employer’s good faith estimate as of the date of publication and may be modified in the future at the discretion of the company. The level of pay within the range will depend on a variety of job-related factors that may include relevant prior experience and/or education, or particular skills and experience.

About SteadyIQ

SteadyIQ is at the forefront of a technology revolution in public benefits delivery. Our proprietary platform, Income Passport, is a consent-based income verification solution that makes submitting proof of earnings more accessible, efficient, and effortless. Leveraging the power of user-permissioned data, SteadyIQ works with government agencies across the country to streamline benefit applications, reduce administrative burden, and prevent fraud.

For more information, visit us at www.steadyiq.com

Steady, Platform Inc. (SteadyIQ) is an Equal Employment Opportunity employer –

All qualified applicants/employees will receive consideration for employment without regard to that individual’s age, race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender, gender identity, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law. Statement to ALL Third-Party Agencies and Similar Organizations: Steady accepts resumes only from agencies with which we formally engage their services. Please do not forward resumes to our applicant tracking system, Steady employees, Steady hiring manager, or send to any Steady facility. Steady is not responsible for any fees or charges associated with unsolicited resumes.