Apply on Employer Site

GHX · 8 hours ago

Principal DevSecOps Engineer

United States

Full-time

Remote

Lead/Staff

$182K/yr - $214K/yr

15+ years exp

GHX is a healthcare business and data automation company that empowers healthcare organizations to enable better patient care and maximize industry savings. The Principal DevSecOps Engineer will serve as a senior technical leader within the DevSecOps Center of Excellence, driving automation, security, observability, and cost optimization across the enterprise.

Hospital & Health Care

H1B Sponsor Likely

Responsibilities

Act as the technical lead for the DevSecOps CoE, driving strategy and execution of security, automation, and observability practices

Design and maintain reusable CI/CD frameworks, IaC modules, and security guardrails for consistent adoption across all product lines

Define, document, and enforce DevSecOps standards, policies, and best practices

Mentor embedded DevSecOps engineers and provide guidance on pipeline design, automation, cost optimization and compliance

Architect and optimize CI/CD pipelines (GitHub Actions, GitLab CI, ArgoCD, Jenkins, Artifactory, Veracode) to enable frequent, secure deployments

Integrate SAST, SCA, DAST, and container scanning into delivery workflows

Establish GitOps practices using Terraform, Pulumi, or Crossplane for infrastructure provisioning

Track and drive improvements in DORA metrics (deployment frequency, lead time, MTTR, change failure rate)

Implement 'shift-left' security by embedding security testing and compliance automation into pipelines

Partner with Security and SRE teams to enforce SLIs, SLOs, and error budgets in delivery pipelines

Advance unified observability initiatives by integrating New Relic, Datadog, Prometheus, Grafana, OpenTelemetry, and CloudWatch into pipelines

Ensure compliance with HIPAA, SOC2, GDPR, and internal governance frameworks

Build cost-awareness into CI/CD and IaC workflows by embedding FinOps checks and cost gates

Collaborate with FinOps and Cloud teams to enforce cost tagging, rightsizing, and efficiency standards

Provide insights and automation for cloud cost optimization across AWS services (EKS, ECS, EC2, S3, RDS, containers)

Partner with Engineering, Product, SRE, and Security leaders to align on standards and frameworks

Drive knowledge sharing and enablement through playbooks, templates, documentation, and internal CoP (Community of Practice) sessions

Act as the escalation point for complex DevSecOps technical challenges across teams

Qualification

DevSecOps expertiseCI/CD pipeline designCloud securityInfrastructure-as-CodeAWS servicesContainers & orchestrationObservability platformsFinOps practicesPythonGoC#Shell scriptingDORA metricsMentoringCross-functional collaboration

Required

15+ years in DevOps, Cloud, or Security Engineering, with expert-level technical leadership in DevSecOps

Strong expertise in CI/CD pipeline design, automation, and governance

Hands-on with CI/CD tools: GitHub Actions, GitLab CI, ArgoCD, Artifactory, Jenkins, Veracode, SonarQube

Deep experience with cloud security and AWS services (IAM, KMS, GuardDuty, Security Hub, CloudTrail)

Proficiency in containers & orchestration (Docker, Kubernetes, EKS, ECS)

Strong hands-on with Infrastructure-as-Code and GitOps (Terraform, Pulumi, Crossplane, CloudFormation)

Familiarity with observability platforms (New Relic, Datadog, Prometheus, Grafana, OpenTelemetry, CloudWatch)

Programming/scripting expertise in Python, Go, C#, and shell scripting

Knowledge of DORA metrics and proven success in improving delivery performance

Practical experience with FinOps practices and cost governance

Preferred

Experience in large-scale SaaS or healthcare environments

Knowledge of databases: MongoDB, Elasticsearch, SQL Server, Oracle

Certifications: AWS Security Specialty, CKA/CKAD, FinOps Certified Practitioner, CISSP, CCSP

Strong ability to influence across global teams without direct authority

Benefits

Health, vision, and dental insurance

Accident and life insurance

401k matching

Paid-time off

Education reimbursement

Company

GHX

Glassdoor3.6

GHX is a software-as-a-service company that’s reducing the cost of doing business in healthcare by automating supply chain processes and improving visibility into the products used in patient care.

Founded in 2000

Louisville, CO, US

1001-5000 employees

http://www.ghx.com

H1B Sponsorship

GHX has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (5)

2024 (9)

2023 (9)

2022 (3)

2021 (13)

2020 (2)