Capital Markets Placement

Dev/Sec Ops Engineer

Capital Markets Placement$110K — $140K *
Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • 8+ years in DevOps/Platform/SRE with a focus on security.
  • Strong IAM design expertise in cloud and Kubernetes environments.
  • Production experience with Terraform, including CI-driven plans.
  • Hands-on knowledge of GitHub Actions for CI/CD management.
  • Proficient in operating Kubernetes in a production setting.
  • Experience with security scanning tools and policy-as-code practices.
  • Strong scripting and troubleshooting skills in Python or Bash.

Responsibilities

  • Design and implement least-privilege IAM for cloud and Kubernetes.
  • Build and maintain Terraform modules, ensuring compliance with standards.
  • Own and optimize GitHub Actions for deployment workflows.
  • Operate and manage Kubernetes clusters with a focus on observability.
  • Embed software supply chain security practices into operations.
  • Implement robust secret management and key rotation processes.
  • Automate incident response runbooks and provide on-call support.

Benefits

  • Comprehensive health and wellness programs.
  • Flexible work environment with minimal travel requirements.
  • Opportunities for professional development and growth.
  • Supportive corporate culture centered around shared values.
Full Job Description
A Day in The Life

We're seeking a DevSecOps Engineer to own the secure delivery pipeline and platform foundations across cloud environments. You'll design and automate IAM, infrastructure as code (Terraform), CI/CD (GitHub Actions), and Kubernetes operations, embedding security controls by default and enabling development teams to ship quickly and safely.

What You'll Do
  • Design and implement least-privilege IAM (users, roles, policies, SSO/OIDC) across cloud and Kubernetes (RBAC, service accounts, Pod Security Standards).
  • Build/maintain Terraform modules and environments (prod/non-prod), enforce drift detection, and apply policy-as-code (OPA/Conftest, Sentinel, Checkov/tfsec).
  • Own GitHub Actions pipelines (build/test/scan/sign/release), reusable workflows, environment protections, required reviews, and deployment gates.
  • Operate Kubernetes clusters (EKS/AKS/GKE or on-prem): cluster lifecycle, Helm/Kustomize, GitOps (Argo CD/Flux), NetworkPolicies, ingress, secrets.
  • Embed software supply chain security: SCA/SAST/DAST, container/IaC scanning, SBOM generation, image signing (Cosign), provenance (SLSA).
  • Implement secret management (Vault/Secrets Manager/KMS), key rotation, and secure parameter stores.
  • Stand up observability: metrics, logs, traces (Prometheus/Grafana/ELK/Cloud-native), and actionable alerts.
  • Automate incident response runbooks; support on-call for platform/security events.
  • Partner with AppSec and product teams on threat modeling, secure design reviews, and remediation.
  • Contribute to compliance initiatives (SOC 2/ISO 27001) with evidence automation and configuration baselines.
  • Drive cost, reliability, and capacity guardrails; champion platform DX and documentation.

Required Qualifications
  • 8+ years in DevOps/Platform/SRE with a security-first mindset.
  • Strong IAM design (cloud + Kubernetes RBAC), OIDC/OAuth2, SSO/IdP (e.g., Okta/Azure Entra).
  • Production Terraform experience (workspaces, modules, remote state, CI-driven plans/applies).
  • Hands-on GitHub Actions (self-hosted runners, OIDC to cloud, environments/protections, matrix builds).
  • Operating Kubernetes in production (Helm, networking, ingress, autoscaling, upgrades, backups/DR).
  • Practical use of security scanners (e.g., Wiz, Trivy/Grype, Dependabot, Checkov/tfsec), and policy-as-code.
  • Proficient with one or more clouds (AWS), Linux, containers, and networking fundamentals.
  • Strong scripting in Python or Bash; Infrastructure troubleshooting and debugging skills.
  • Clear communication, ownership, and ability to drive cross-team initiatives.

Nice to Have
  • HashiCorp Vault, keeper/Kyverno, service mesh (Istio/Linkerd), or CNI like Cilium.
  • GitOps at scale (Argo CD multi-app/multi-cluster), progressive delivery (Argo Rollouts/Flagger).
  • Experience with SIEM, detections, or security data pipelines.
  • Knowledge of data protection (PII), tokenization, and regional compliance.
  • Background in financial/insurance/auto domains (regulated environments).

Physical Requirements

The physical requirements described here are representative of those that must be met by an associate to successfully perform the essential functions of the job. While performing the duties of the job, the associate is required on a daily basis to analyze and interpret data, communicate, and remain in a stationary position for a significant amount of the work day; and frequently access, input, and retrieve information from the computer and other office productivity devices. The associate is regularly required to move about the office and around the corporate campus. The associate is occasionally required to travel to other sites, including out-of-state, where applicable, for business. The associate must frequently move up to 10 pounds and occasionally move up to 25 pounds.

Work Environment

The work environment characteristics described here are representative of those an associate encounters while performing the essential functions of this job. While the job is generally performed in an office environment, the associate is occasionally exposed to wet and/or humid conditions, areas in which moving mechanical parts, fumes, toxic or caustic chemicals are present, and outside weather conditions. The noise level in the office environment is typically quiet, but the associate may be occasionally exposed to loud noise levels.

Travel Required

Minimal travel is required for this position (up to 20% of the time and on a domestic basis).

#LI-TW1

About Capital Markets Placement

Capital Markets Placement is a financial services company that provides debt and equity financing solutions to businesses. The company specializes in providing funding to small and medium-sized businesses that are looking to grow or expand their operations. Capital Markets Placement offers a range of financing options, including asset-based lending, bridge loans, mezzanine financing, and equity financing. The company has a team of experienced professionals who work closely with clients to understand their needs and provide customized financing solutions. Capital Markets Placement is committed to helping businesses achieve their goals and grow their operations.
Learn more about Capital Markets Placement
Size
50 employees
Industry
Founded
1997

Similar Jobs

More Jobs at Capital Markets Placement

More Information Technology Jobs

Find similar Dev/Sec Ops Engineer jobs: