Digital DevSecOps Engineering Manager
United States of America
Full Time
2 weeks ago
$94,000 - $141,000 USD
H1B Sponsor Likely
Key skills
PythonBashPowerShellAWSAzureGCPTerraformKubernetesDockerPulumiECSAKSGKECloudFormationIAMCloudWatchPrometheusGrafanaDatadogSDLCCI/CDCollaboration
About this role
Envista Holdings Corporation is a global leader in the dental industry, uniting more than 30 trusted brands under one mission. The DevSecOps Engineering Manager will lead a team responsible for building, securing, and operating cloud-native infrastructure and CI/CD platforms, ensuring the delivery of secure, scalable, and reliable applications.
Responsibilities:
- Lead, mentor, and develop a team of DevSecOps engineers, fostering a culture of ownership, collaboration, and continuous improvement
- Set clear goals, performance expectations, and career development plans for team members
- Manage resource allocation, workload distribution, and hiring to ensure the team can meet delivery and operational commitments
- Communicate priorities, risks, and capacity constraints to stakeholders to ensure alignment and realistic expectations
- Drive cross-functional collaboration with engineering, security, product, and operations teams
- Oversee the design, implementation, and optimization of cloud infrastructure (AWS, Azure, or GCP) with a focus on reliability, scalability, and cost efficiency
- Ensure operational excellence across cloud environments, including monitoring, incident response, and performance tuning
- Guide the adoption and maintenance of Infrastructure as Code (Terraform, CloudFormation, Pulumi)
- Lead the management of container orchestration platforms (Kubernetes, ECS, AKS, GKE) and ensure secure, efficient cluster operations
- Architect and maintain secure CI/CD pipelines with automated testing, scanning, and compliance checks
- Champion security-by-design principles throughout the SDLC, partnering closely with development teams
- Oversee implementation of secrets management, identity and access controls, and policy-as-code frameworks
- Drive automation initiatives to reduce manual work, improve reliability, and accelerate delivery
- Lead threat modeling, vulnerability management, and risk assessments across cloud and application environments
- Ensure adherence to compliance frameworks (SOC 2, ISO 27001, NIST, PCI, HIPAA depending on the organization)
- Oversee monitoring and response to security events using SIEM, CSPM, and cloud-native security tools
- Promote a culture of secure engineering practices across the organization
- Lead incident response efforts and participate in on-call rotations as needed
- Ensure robust observability through dashboards, alerts, and monitoring tools (Prometheus, Grafana, Datadog, CloudWatch)
- Drive root cause analysis and implement long-term improvements to prevent recurring issues
- Maintain documentation, runbooks, architectural diagrams, and operational standards
Requirements:
- Bachelor's degree in business, Computer Science, or a related field
- 10+ years of experience in DevSecOps, Cloud Engineering, or Site Reliability Engineering role
- Proven experience in a DevSecOps, Cloud Engineering, or Site Reliability Engineering role
- Prior experience managing or leading engineering teams
- Strong expertise with at least one major cloud provider (AWS, Azure, or GCP)
- Hands‑on experience with CI/CD pipelines and automation frameworks
- Solid understanding of Linux systems, networking, and troubleshooting
- Experience with containers and orchestration (Docker, Kubernetes)
- Familiarity with security tooling (SAST, DAST, SCA, SIEM, CSPM, IAM)
- Proficiency with scripting languages (Python, Bash, PowerShell)
- Experience with IaC tools (Terraform, CloudFormation, ARM, Pulumi)
- Certifications such as AWS Solutions Architect, Azure Administrator, Security+, CISSP, or Kubernetes CKA/CKS
- Experience with zero‑trust architectures and policy‑as‑code (OPA, Sentinel)
- Background in incident response or security operations
- Knowledge of microservices architecture and API security