DevsecOps Engineer

ABOUT PLANITAR 
Founded in 2013, Planitar Inc. is the maker of iGUIDE, a proprietary camera and software platform for capturing and delivering accurate floorplans, immersive 3D virtual tours and extensive property data. 
  

iGUIDE is the most efficient system to map interior spaces and features accurate floor plans, measurements, and reliable property square footage. By integrating floor plans and visual data, iGUIDE provides an intuitive and practical way to navigate and explore built environments digitally.  
  

Visit www.goiguide.com for more information. 

ABOUT THE ROLE 

We are seeking an experienced and proactive DevSecOps Engineer to lead the integration of security into our software development lifecycle and cloud infrastructure. In this role, you will not just be finding vulnerabilities; you will be building the automated systems, guardrails, and processes that prevent them from reaching production. 

You will work closely with our Platform and Software Engineering teams to champion a "shift-left" security culture. The ideal candidate is an automation enthusiast with a hacker mindset, someone who deeply understands modern cloud infrastructure, CI/CD pipelines, and how to secure them without slowing down developer velocity. 

RESPONSIBILITIES 

Secure CI/CD Pipelines: Design, build, and maintain automated security testing within continuous integration and deployment pipelines (incorporating SAST, DAST, and SCA tools). 

Cloud Security Posture: Implement and monitor security controls across our AWS cloud environment, ensuring compliance with industry best practices and frameworks. 

Infrastructure as Code (IaC) Security: Enforce "Security as Code" by implementing automated scanning for Terraform templates to catch misconfigurations before deployment. 

Vulnerability Management: Triage, track, and partner with engineering teams to remediate security vulnerabilities across infrastructure, containers, and applications. 

Threat Modeling & Architecture: Participate in system design reviews and threat modeling sessions to identify potential attack vectors in new features and infrastructure. 

Incident Response: Assist in cloud and application security incident response, including forensic log analysis and mitigation strategy development. 

Advocacy & Training: Evangelize secure coding practices and provide guidance to developers on how to build highly secure, resilient systems. 

SKILLS & QUALIFICATIONS 

Experience: 3+ years of hands-on experience in DevSecOps, Cloud Security, or a DevOps role with a heavy security focus. 

Cloud Platforms: Strong proficiency in securing AWS environments (e.g., deep knowledge of IAM, VPCs, GuardDuty, Security Hub, AWS WAF, KMS). 

Automation & Scripting: Strong coding/scripting skills in Python, Bash to automate security workflows and integrate APIs. 

CI/CD & Security Tooling: Hands-on experience integrating security scanners (e.g., Snyk, SonarQube, Trivy, Checkmarx) into modern pipelines (e.g., GitHub Actions, GitLab CI). 

Infrastructure as Code: Proficiency writing and reviewing IaC (Terraform) and utilizing IaC security scanners (e.g., tfsec, Checkov). 

Container Security: Solid understanding of Docker and Kubernetes security concepts, including image scanning, RBAC, and network policies. 

Networking: Practical knowledge of network security fundamentals, including firewalls, zero-trust architecture, VPNs, and TLS/SSL. 

ADDITIONAL ASSETS (NICE TO HAVE) 

Relevant certifications such as AWS Certified Security – Specialty, CKA/CKS (Certified Kubernetes Security Specialist), or OSCP. 

Experience with regulatory compliance frameworks (e.g., SOC2, ISO 27001, HIPAA). 

Familiarity with SIEM/SOAR tools and centralized logging strategies.