DevSecOps Specialist

Vanguard Group, Inc.

$100K — $130K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Minimum four years of related work experience, particularly in IT security or application development.
  • Undergraduate degree in a related field or equivalent experience.
  • Preferred security certifications such as CISSP, GSEC, GPEN, GWPN, or CEH.

Responsibilities

  • Implement and operate enterprise secrets scanning solutions (e.g., GHAS, Wiz).
  • Integrate secrets detection into CI/CD pipelines and PR workflows.
  • Configure detection rules and policy thresholds to reduce noise.
  • Identify, triage, and prioritize exposed secrets across various platforms.
  • Drive remediation efforts with engineering teams to address exposed secrets.
  • Build automation for secrets detection and response workflows.
  • Maintain operational health and monitoring of secrets scanning platforms.

Benefits

  • Job role with a strong focus on automation and improving developer experience.
  • Opportunity to work closely with a variety of teams including IAM, AppSec, and engineering.
  • Engagement in continuous improvement efforts within AppSec/security processes.
  • A role that emphasizes the importance of credential lifecycle governance.
Full Job Description
Core Responsibilities
  • Implement and operate enterprise secrets scanning solutions (e.g., GHAS, Wiz)
  • Integrate secrets detection into CI/CD pipelines and PR workflows
  • Configure detection rules, patterns, and policy thresholds to reduce noise
  • Identify, triage, and prioritize exposed secrets across repositories and platforms
  • Drive remediation with engineering teams (revoke, rotate, remove exposed secrets)
  • Build automation for secrets detection, alerting, and response workflows
  • Ensure reliable and scalable execution of scanning across pipelines
  • Maintain monitoring, alerting, and operational health of secrets platforms
  • Troubleshoot pipeline/tooling issues and perform root cause analysis
  • Partner with IAM, pipeline, and AppSec teams for credential lifecycle governance
  • Improve developer experience by minimizing friction and providing clear remediation guidance
  • Contribute to continuous improvement and automation of AppSec/security processes


Qualifications
  • Minimum four years related work experience. Experience in IT security or application development preferred.
  • Undergraduate degree in related field or equivalent combination of training and experience.
  • Preferred security certification such as ISC2 CISSP, GIAC Security, Essentials Certification (GSEC), GIAC Penetration Tester Certification (GPEN), GIAC Web App Pen Tester (GWPN), or Certified Ethical Hacker (CEH)

Special Factors

Sponsorship
Vanguard is not offering visa sponsorship for this position.

Similar Jobs

More Jobs at Vanguard Group, Inc.

More Information Technology Jobs

Find similar DevSecOps Specialist jobs: