Lead DevSecOps Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Colossus Technologies Group · 1 week ago

Lead DevSecOps Engineer

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
money$175K/yr - $195K/yr
date6+ years exp

Colossus Technologies Group is a fast-paced startup seeking a Lead DevSecOps Engineer to design, build, and scale secure cloud infrastructure. The role involves owning the DevSecOps architecture, driving automation initiatives, and embedding security best practices throughout CI/CD pipelines.

Computer & Network Security

Responsibilities

Lead the design and implementation of cloud infrastructure in AWS using Terraform (Infrastructure as Code)
Build and maintain automated CI/CD pipelines that integrate static code analysis, dependency scanning, container image scanning, and other security checks as part of the deployment process
Integrate and manage code scanning and application security tools (e.g., SAST, SCA, DAST) within CI/CD to enforce security gates and “shift-left” security
Partner with Engineering and Security teams to ensure system reliability, scalability, and vulnerability management
Drive observability initiatives — implement logging, tracing, and alerting across distributed systems
Champion DevSecOps best practices and mentor other engineers on cloud security and automation standards
Evaluate and integrate new tools to continuously improve deployment and infrastructure workflows

Qualification

AWSTerraformCI/CD pipelinesContainerizationSecurity EngineeringPythonGoCommunication skillsCollaboration skills

Required

6+ years of DevOps, Cloud, or Software Engineering experience, with at least 2+ years in a Security Engineering
Deep expertise in AWS services (ECS, EKS, Lambda, CloudFormation, IAM, etc.)
Proven experience with Terraform for multi-environment infrastructure management
Hands-on experience integrating code scanning and security tools into CI/CD pipelines (e.g., SonarQube, Snyk, Checkov, or similar)
Strong knowledge of containerization and orchestration (Docker, Kubernetes)
Experience building security and compliance into CI/CD workflows
Previous experience working in a startup or high-growth environment — comfortable wearing multiple hats and operating autonomously
Excellent communication and collaboration skills
Experience with Python or Go

Preferred

Experience with security tools (e.g., HashiCorp Vault, AWS Inspector, Twistlock, etc.)
Exposure to SOC2, ISO27001, or other compliance frameworks

Benefits

Competitive salary with equity opportunities.
100% remote-first environment

Company

Colossus Technologies Group

twitter
company-logo
At Colossus Technologies Group, we provide top-tier cybersecurity and digital trust staffing, IT consulting, and project management solutions, including privacy, security, and GRC SaaS platform solution implementation.
dateFounded in 2021
location
Boston, Massachusetts, US
people-size2-10 employees
web-link
http://www.colossustg.com

Funding

Current Stage
Early Stage

Leadership Team

leader-logo
Kort Evans
Founder and Principal Cybersecurity Consultant
linkedin
Company data provided by crunchbase