Key skills
PythonAIMLLLMAWSAzureGCPTerraformKubernetesJenkinsGitHub ActionsGitLab CIECSAKSCloudFormationIAMAzure DevOpsOAuthSAMLSSOGitHubGitLabCI/CDCloud SecurityZero Trust
About this role
YPO is the world’s most influential community of chief executives, and they are seeking a DevSecOps Engineer to integrate security and compliance into the software development lifecycle. This role will partner closely with engineering teams to ensure secure by design principles are embedded across YPO’s global AI first platforms.
Responsibilities:
- The DevSecOps Engineer integrates security and compliance into the software development lifecycle, CI/CD pipelines, application workflows, and cloud infrastructure
- This role partners closely with engineering teams to embed secure by design principles across YPO’s global AI first platforms, protecting confidentiality, integrity, and availability while supporting innovation and operational excellence
- Multi cloud security architecture (AWS, Azure, GCP)
- Kubernetes, ECS, AKS, secure APIs, encryption, secrets management
- Network segmentation and secure by design infrastructure controls
- Terraform, CloudFormation, ARM
- OPA, Sentinel, Azure Policy, AWS SCPs
- Automated validation and remediation
- SAST, DAST, SCA, container scanning, IaC scanning
- Automated security gates and pipeline security controls
- CI/CD tooling including GitHub Actions, Azure DevOps, GitLab CI, Jenkins
- STRIDE, MITRE ATT&CK, architecture and code reviews
- Secure coding standards for APIs, mobile applications, and AI powered services
- Vulnerability remediation and triage support
- IAM, RBAC, PAM, SSO, MFA, OAuth/OIDC, SAML
- Access reviews, entitlement governance, and privilege drift detection
- Vulnerability management lifecycle
- SIEM/SOAR telemetry integration
- Threat hunting, incident response, forensic investigations
- Security playbooks and tabletop exercises
- Security automation and compliance reporting (Python preferred)
- SOC 2, ISO 27001, NIST CSF, GDPR / CCPA
- Audit readiness and governance support
Requirements:
- Experience in cloud infrastructure security
- Experience in DevSecOps and CI/CD security integration
- Experience in AI/ML infrastructure and LLM security
- Experience in Terraform and Infrastructure as Code
- Experience in Kubernetes and container security
- Experience in IAM and Zero Trust architecture
- Experience in vulnerability management and security operations
- Experience in compliance and governance frameworks
- Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience)
- Security certifications highly desirable (AWS, Azure, GCP, CISSP, CCSP, GIAC, etc.)
- Multi cloud security architecture (AWS, Azure, GCP)
- Kubernetes, ECS, AKS, secure APIs, encryption, secrets management
- Network segmentation and secure by design infrastructure controls
- Terraform, CloudFormation, ARM
- OPA, Sentinel, Azure Policy, AWS SCPs
- Automated validation and remediation
- SAST, DAST, SCA, container scanning, IaC scanning
- Automated security gates and pipeline security controls
- CI/CD tooling including GitHub Actions, Azure DevOps, GitLab CI, Jenkins
- STRIDE, MITRE ATT&CK, architecture and code reviews
- Secure coding standards for APIs, mobile applications, and AI powered services
- Vulnerability remediation and triage support
- IAM, RBAC, PAM, SSO, MFA, OAuth/OIDC, SAML
- Access reviews, entitlement governance, and privilege drift detection
- Vulnerability management lifecycle
- SIEM/SOAR telemetry integration
- Threat hunting, incident response, forensic investigations
- Security playbooks and tabletop exercises
- Security automation and compliance reporting (Python preferred)
- SOC 2, ISO 27001, NIST CSF, GDPR / CCPA
- Audit readiness and governance support