DevSecOps Engineer

Brightly Software · A Siemens Company

Who We Are

Build a brighter future while learning and growing with a Siemens company at the intersection of technology, community, and sustainability. Our global team of innovators is always looking to create meaningful solutions to some of the toughest challenges facing our world. We're building a platform organization where security, reliability, and developer experience aren't trade-offs—they're the foundation. Find out how far your passion can take you.

About the Role

We're looking for a DevSecOps Engineer who is ready to own their domain and drive real impact across our cloud infrastructure. You'll design and build secure, scalable systems, embed security throughout the development lifecycle, and work closely with engineering and product teams to raise the security bar without slowing anyone down. This is a role for someone who leads with accountability, moves fast without breaking things, and genuinely loves solving hard problems in ambiguous environments.

What You'll Do

•       Design and implement secure cloud infrastructure components and protective measures for applications and data

•       Lead infrastructure projects that enhance our security posture and operational efficiency

•       Develop automation for security-related workflows and processes, reducing toil and human error

•       Identify, prioritize, and address cloud infrastructure security findings through automated and manual processes

•       Develop infrastructure as code templates with embedded security controls

•       Create automated workflows for security event response and compliance reporting

•       Translate security requirements into practical, scalable technical implementations

•       Actively participate in incident response for security events affecting infrastructure

•       Provide clear technical documentation for security architecture and implemented controls

•       Build and configure secure CI/CD pipelines with integrated security testing and validation

•       Stay current with cloud technologies, threat landscapes, and implementation best practices

•       Leverage AI-assisted tooling to accelerate secure infrastructure development and automate repetitive security workflows

What You Need

•       Bachelor's in computer science, cybersecurity, or related discipline; or equivalent work experience

•       3–5 years of relevant work experience in a DevSecOps, cloud security, or platform engineering role

•       Strong understanding of architectural design patterns from software, security, and cloud infrastructure perspectives

•       Experience with cloud technologies and services (AWS preferred)

•       2+ years' experience with CI/CD pipelines and tools

•       2+ years of coding and scripting experience

•       2+ years of cloud administration and infrastructure management

•       Security-first DevOps mindset with a bias for automation and shift-left practices

•       Experience with container technologies

•       Strong communication skills with demonstrated ability to collaborate across engineering and non-technical teams

•       Familiarity with AI/ML concepts and willingness to integrate AI-powered tools into DevSecOps practices, including security scanning, threat detection, and code review automation

Bonus Points

•       Experience implementing security controls throughout the SDLC

•       Knowledge of compliance frameworks and security best practices

•       Familiarity with NIST frameworks and controls

•       Advanced infrastructure as code experience

•       Experience with multiple cloud providers

•       Experience with infrastructure monitoring and observability tools

•       Experience with vulnerability scanning and security testing automation

•       Experience with penetration testing

•       Experience using AI tools for threat modeling, vulnerability triage, or automated remediation—or a demonstrated curiosity in applying AI/ML to cloud security

•       Knowledge of database administration

•       Contributions to open-source projects

•       Security certifications (e.g., AWS Security Specialty, CISSP, CEH)

•       DevOps certifications

What Sets Our High Performers Apart

We hire for skills but we retain and grow people who bring these qualities to everything they do:

Extreme Ownership

Our best engineers take full responsibility for outcomes—good or bad—without excuses. They own mistakes immediately, show up to every situation prepared, and go above and beyond to help others succeed. When something breaks at 2am, they're already on it with a fix in hand before anyone asks.

Relentless Execution

High performers here move with controlled urgency. They turn vague assignments into clear action plans, ship consistently without needing to be chased, and define what success looks like before they write a single line of code. They follow through—even when no one is watching.

Insatiable Curiosity

The security landscape never stands still, and neither do our best people. They ask "why?" and "how can we do this better?" relentlessly, stay hungry for new tools and approaches, and treat feedback as a shortcut to growth rather than a threat. A track record of continuous learning—certifications, side projects, community involvement—gets our attention.

Technologies

•       AWS

•       Terraform, SAM, CDK, CloudFormation, Ansible

•       C#, GO, TypeScript, Python, PowerShell, Bash, Groovy

•       Jenkins, Tekton, CodeDeploy, CodeCommit

•       Docker, PodMan, Kubernetes, OpenShift

•       .NET Framework and .NET Core

•       SQL Server, DynamoDB, SnowFlake, Postgres

•       Continuous Integration and Delivery tools

•       Kafka, Kinesis, Elasticsearch

•       DataDog, CloudWatch

•       Snyk, Wiz

The Brightly Culture

We're guided by a vision of community that serves the ambitions and wellbeing of all people, and our professional communities are no exception. We model that ideal every day by being supportive, collaborative partners to one another, conscientiously making space for our colleagues to grow and thrive. Our passionate team is driven to create a future where smarter infrastructure protects the environments that shape and connect us all. That brighter future starts with us.