Ares Management · 1 day ago
Cybersecurity Engineer – SecDevOps
Washington, D.C.
Full-time
Onsite
Senior Level, Lead/Staff
$240K/yr - $270K/yr
8+ years expAres Management is a leading firm committed to fostering a diverse and inclusive work environment. They are seeking a SecDevOps-focused Security Engineer to embed security into the software delivery lifecycle, automate security controls, and design scalable guardrails for secure engineering practices.
FinanceProperty & Casualty InsuranceProfessional ServicesAsset ManagementBusiness DevelopmentCreditFinancial ServicesInsurance
Responsibilities
Design, operate, and continuously improve CI/CD pipelines using modern tooling to enable rapid, consistent, and high‑quality software delivery
Automate build, test, and deployment workflows to reduce manual effort and improve engineering velocity
Use Terraform, CloudFormation, or similar IaC technologies to define and manage cloud infrastructure in a scalable, repeatable, and version‑controlled manner
Ensure infrastructure is provisioned reliably and consistently through code‑driven automation
Leverage tools such as Ansible, Chef, or Puppet to automate system configuration and maintain standardized environments across development, staging, and production
Ensure configuration drift is minimized and environments remain aligned with security and compliance requirements
Build and maintain containerized application patterns using Docker
Utilize Kubernetes (or equivalent orchestration platforms) to deploy, scale, and operate containerized workloads in a resilient, automated fashion
Develop automation using Python, Bash, PowerShell, or similar languages to eliminate repetitive tasks and improve operational efficiency
Create custom tooling that supports engineering workflows, observability, and security automation
Implement and maintain monitoring, logging, and alerting systems—leveraging tools such as Splunk—to ensure environment health, availability, and performance
Develop proactive detection mechanisms to identify and remediate issues before they impact operations
Use Git to manage source code, configuration, and infrastructure artifacts while promoting strong branching, pull request, and code review practices
Help teams adopt workflows that enhance collaboration and code quality
Work with Azure and other cloud platforms to build scalable, secure, and highly automated infrastructure
Leverage cloud‑native capabilities to improve performance, reliability, and cost efficiency
Automate critical security controls—including vulnerability scanning, compliance validation, policy enforcement, and incident response
Integrate security scanning and guardrails directly into CI/CD pipelines to ensure continuous security from commit through production
Effective communication skills to collaborate with development, operations, and security teams
Promoting a culture of SecDevOps and automation within the organization
Automating the build, test, and deployment processes to ensure rapid and reliable delivery of software
Excellent leadership and team management skills
Strong analytical and problem-solving abilities, supported by inclusive collaboration with team members with diverse working and thinking styles
Ability to stay updated with the latest security trends and threats
Qualification
Required
Significant experience in Cybersecurity (typically 8+ years), with significant hands-on experience in Security Engineering, DevOps, SRE, AppSec automation, or Platform Engineering OR equivalent practical expertise gained through nontraditional paths
Hands-on with one or more CI/CD stacks (GitHub Actions, GitLab CI, Azure DevOps, Jenkins)
Proficient in Terraform/IaC, Kubernetes, and cloud provider security (Azure preferred)
Experience integrating SAST/SCA/DAST, container/IaC scanners, and secret scanning into pipelines
Strong scripting in Python and/or Bash; infrastructure tooling (Helm, kustomize)
Familiarity with OIDC workload identity, artifact registries, and software supply chain controls
Clear communicator who can translate risk into engineering work
Preferred
Built policy gates with OPA/Gatekeeper or Kyverno; authored custom policies
Implemented sigstore cosign, admission controls, and image allowlists
Experience with Falco or cloud runtime sensors; integrated with SIEM/SOAR (Splunk, Sentinel)
Knowledge of SLSA, NIST SSDF, CIS Benchmarks, MITRE ATT&CK for Containers/Cloud
Exposure to secrets lifecycle automation (rotation, dynamic creds), Vault or cloud-native KMS
Background in threat modeling and attack surface reduction for microservices
Benefits
Comprehensive Medical/Rx
Dental and Vision plans
401(k) program with company match
Flexible Savings Accounts (FSA)
Healthcare Savings Accounts (HSA) with company contribution
Basic and Voluntary Life Insurance
Long-Term Disability (LTD) and Short-Term Disability (STD) insurance
Employee Assistance Program (EAP)
Commuter Benefits plan for parking and transit
Access to a world-class medical advisory team
A mental health app that includes coaching, therapy and psychiatry
A mindfulness and wellbeing app
Financial wellness benefit that includes access to a financial advisor
New parent leave
Reproductive and adoption assistance
Emergency backup care
Matching gift program
Education sponsorship program
Company
Ares Management
Ares Management is an alternative asset manager focusing on credit, private equity, and real estate.
1001-5000 employees
H1B Sponsorship
Ares Management has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (7)
2023 (1)
Funding
Current Stage
Public CompanyTotal Funding
$5.4B2025-10-29Post Ipo Equity· $1.5B
2025-01-09Post Ipo Equity· $2.3B
2024-10-09Post Ipo Debt· $750M
Leadership Team
Michael Arougheti
Director, Co-Founder & Current CEO
Antony Ressler
Co-Founder, Director and Executive Chairman
Recent News
WSJ.com: US Business
2026-02-12
Private Debt Investor
2026-02-11
Company data provided by crunchbase