DevSecOps Specialist

Vanguard Group, Inc.

$100K — $130K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Minimum four years related work experience in IT security or application development.
  • Undergraduate degree in a related field or equivalent combination of training and experience.
  • Preferred security certifications: ISC2 CISSP, GIAC GSEC, GIAC GPEN, GIAC GWPN, or CEH.

Responsibilities

  • Implement and operate enterprise secrets scanning solutions (e.g., GHAS, Wiz).
  • Integrate secrets detection into CI/CD pipelines and pull request workflows.
  • Configure detection rules and policy thresholds to minimize false alerts.
  • Identify, triage, and prioritize exposed secrets across code repositories.
  • Drive remediation efforts with engineering teams, including revocation and rotation of secrets.
  • Build automation for secrets detection and response workflows.
  • Ensure reliable execution of scanning across development pipelines.

Benefits

  • Comprehensive benefits package including health, dental, and vision insurance.
  • 401(k) plan with company match.
  • Flexible work schedule and remote work options.
  • Professional development and training opportunities.
  • Employee wellness programs.
Full Job Description
Core Responsibilities
  • Implement and operate enterprise secrets scanning solutions (e.g., GHAS, Wiz)
  • Integrate secrets detection into CI/CD pipelines and PR workflows
  • Configure detection rules, patterns, and policy thresholds to reduce noise
  • Identify, triage, and prioritize exposed secrets across repositories and platforms
  • Drive remediation with engineering teams (revoke, rotate, remove exposed secrets)
  • Build automation for secrets detection, alerting, and response workflows
  • Ensure reliable and scalable execution of scanning across pipelines
  • Maintain monitoring, alerting, and operational health of secrets platforms
  • Troubleshoot pipeline/tooling issues and perform root cause analysis
  • Partner with IAM, pipeline, and AppSec teams for credential lifecycle governance
  • Improve developer experience by minimizing friction and providing clear remediation guidance
  • Contribute to continuous improvement and automation of AppSec/security processes


Qualifications
  • Minimum four years related work experience. Experience in IT security or application development preferred.
  • Undergraduate degree in related field or equivalent combination of training and experience.
  • Preferred security certification such as ISC2 CISSP, GIAC Security, Essentials Certification (GSEC), GIAC Penetration Tester Certification (GPEN), GIAC Web App Pen Tester (GWPN), or Certified Ethical Hacker (CEH)

Special Factors

Sponsorship
Vanguard is not offering visa sponsorship for this position.

Similar Jobs

More Jobs at Vanguard Group, Inc.

More Information Technology Jobs

Find similar DevSecOps Specialist jobs: