Senior DevSecOps Engineer

Описание вакансии

Senior DevSecOps Engineer

About us

Hyperproof is on a mission to transform the Governance, Risk, and Compliance (GRC) world with a powerful new software platform.  With Hyperproof, companies can save time and money while also operating their programs at a much higher level of effectiveness and accountability.  We envision a world where organizations we depend on are truly trustworthy - and Hyperproof is the platform that will get them there.

We have a great team and culture - picture yourself in a highly collaborative startup environment where you can make a real impact on something truly important. It’s an exciting time to be at Hyperproof; we raised our Series B round in 2023, validating our teamwork and company vision, and we continue to grow rapidly.

As we continue to grow, we are seeking a talented Senior DevSecOps Engineer to join our team and lead our efforts in supporting our multi-region, FedRAMP-authorized infrastructure.

WHO YOU ARE:

You are a seasoned Senior DevSecOps Engineer with a passion for ensuring the reliability, scalability, and security of cloud-based infrastructure. You thrive in dynamic environments and possess a deep understanding of Azure technologies. Your expertise in DevOps methodologies and security practices, and federal compliance standards makes you an invaluable asset to any team.

You excel at collaborating with cross-functional teams and are dedicated to driving innovation and continuous improvement. You understand that compliance and developer velocity are not opposing forces — and you know how to architect systems that deliver both.

WHAT YOU WILL DO:

As a Senior DevSecOps Engineer, you will lead the management and optimization of Hyperproof's Azure-based infrastructure across commercial and FedRAMP regions. Your responsibilities will include:

• Develop and execute DevOps strategy tailored to all Hyperproof regions, including our FedRAMP-authorized environments.
• Own and evolve our Terraform/Terragrunt IaC pipeline for multi-subscription promotion, including continuous monitoring
• Architect secure, scalable platform infrastructure including GitHub Actions, GitLab, and ADO CI/CD pipelines with security gates, Kubernetes environments, observability systems, and compliance automation that enables developer  velocity while maintaining continuous compliance posture.
• Support FedRAMP authorization activities: contribute to SSP documentation, NIST 800-53  control implementations, 3PAO coordination, and readiness assessments while establishing  repeatable processes.
• Lead the design and security implementation of our Seattle-based on-premise build/test platform. You will ensure that physical hardware configurations (firmware, networking, and storage layout) maintain parity with our Azure Kubernetes Service (AKS) patterns while meeting strict SOC 2 compliance standards for local developer workflows.
• Establish security and compliance architecture patterns across encryption, network  segmentation, secrets management, supply chain security, and incident response.
• Drive technical decisions and technology selection for cloud platforms, compliance tooling, and security controls.
• Mentor and raise the technical bar across engineering teams through architecture reviews,  design discussions, and establishing FedRAMP best practices.
• Partner with security, product, and business leadership to translate federal customer  requirements into technical architecture and deliver measurable improvements in security  posture and operational efficiency.
• Monitor, triage, and remediate CVEs and security vulnerabilities across infrastructure,  container images, and dependencies — maintaining compliance with FedRAMP continuous monitoring requirements.

WHAT YOU WILL BRING:Required:

• U.S. citizenship, residing and working from within the United States.\*
• BS in Computer Science, Engineering, or a related field (or equivalent  experience).
• 5+ years of extensive experience in SRE, DevSecOps or Platform engineering roles, with a focus on managing  Azure-based infrastructure.
• Demonstrated knowledge and interest in applying AI technologies towards fully or partially automating compliance & security workflows
• Strong programming skills (Python, Bash, Go, or Node.js) and demonstrated ability to drive complex technical initiatives from architecture through production.
• Expertise in modern platform technologies: Kubernetes security, infrastructure-as-code (Terraform/Terragrunt), GitOps (Helm/ArgoCD/Flux), Ansible, CI/CD security, observability systems, and secrets management.
• Familiarity with compliance standards and regulations, particularly NIST 800-53 and  FedRAMP.
• Excellent communication and collaboration skills, with the ability to work effectively in  a cross-functional team environment.
• A positive attitude and a willingness to learn, adapt, collaborate, and grow in a dynamic  environment.

Preferred:

• Experience contributing to FedRAMP authorization efforts (Moderate or High), including SSP documentation, control implementation, or 3PAO coordination.
• Experience with Azure networking, and security boundaries.
• Experience with compliance automation, supply chain security (SBOM, image signing), or secrets management at scale.
• Professional certifications: CISSP, Azure Security Specialty, CKS, or equivalent.
• Familiarity with CMMC, OSCAL, or compliance-as-code practices.
• Experience with vulnerability scanning and remediation tooling (e.g., Trivy, Snyk, Qualys, or Defender for Cloud).
• Advanced degree in Computer Science or related field, or equivalent experience architecting secure, compliant platforms at scale.

LOCATION

Fully remote within the Seattle area; available to work until 6pm Pacific on a daily basis.

CANDIDATE EXPERIENCE

We respect your time and aim for transparency throughout the interview process. You can expect:

• A 30-minute initial chat with our Principal People & Talent Partner.
• A Take Home Assessment, which you will work on within GitHub.
• Three 60-minute 1:1 interviews with members of our engineering team, one of them who will be the hiring manager.

This process allows both parties to ask questions and gauge fit for the team.

\Due to the nature of the work and participation in federal security and compliance programs, U.S. citizenship is required as a bona fide occupational qualification in accordance with federal government security and compliance regulations. This role requires physical presence within the United States while working — access to FedRAMP-authorized  environments from outside U.S. borders is not permitted.*

Full compensation packages are based on candidate experience and certifications.

WA pay input

$164,000—$200,000 USD

Full compensation packages are based on candidate experience and certifications.

CA pay input

$164,000—$200,000 USD

Full compensation packages are based on candidate experience and certifications.

NY pay input

$164,000—$200,000 USD

Full compensation packages are based on candidate experience and certifications.

USA pay input

$164,000—$200,000 USD

WHERE YOU’LL GO

• Hyperproof also loves to see an internal transfer. If a linear career path is not what you’re looking for, you can work with your manager and our people team to explore lateral moves to other parts of the organization as you continue to grow with us.

WHAT WE OFFER TO OUR EMPLOYEES

Please note: Benefits listed below are for employees in the United States; contractor roles or international positions may differ

• Annual compensation reviews + equity
• Unlimited PTO: strongly encouraged to unplug and recharge
• Health: coverage for medical, dental, and vision - employee and dependents
• 401K, which vests immediately, complete with a 4% company match
• 12 weeks of Parental leave and 1 year free diapers and wipes with Honest
• Annual company in-person events and quarterly in-person connects
• $500 home office stipend - at the time of hire. Any additional home office needs are requested as needed.
• $100 quarterly paid wellness stipend
• Pet insurance discount
• Slack channel notifications turn off after 5 pm based on your time zone
• Two Hypercharge weeks of rest where we close company-wide (July & Dec)

It’s an exciting time to be at Hyperproof — we recently raised $40 million in our Series B financing, further cementing Hyperproof as the emerging leader in the risk and compliance management space.

At Hyperproof’s core are our passionate team members who focus on user experience, beautiful design, and evangelize a positive social impact of our cloud based platform. We help organizations streamline their risk and compliance workflows so our customers can spend more time strategically managing programs and less time wrangling spreadsheets.

We are disrupting the governance, risk, and compliance software space with our innovative platform by helping traditionally unsung heroes (compliance professionals) do the right things so the wrong things don’t happen.

Learn more about the @hyperproof cultureand how it all started.

A NOTE ABOUT OUR INTERVIEW PROCESS

We’re committed to creating a fair, respectful, and secure hiring experience for everyone. As part of that commitment, we use standard verification steps throughout our interview process.

Here’s what that means for you:

• We may conduct routine verification checks during the hiring process.
• You might be asked additional questions to better understand your experience and background.
• For video interviews, we ask that candidates be on camera without filters or visual modifications.

These steps are applied consistently for all candidates and are designed to ensure an equitable experience for everyone.

EQUAL OPPORTUNITY EMPLOYER

Hyperproof is committed to a diverse and inclusive workplace  — it’s one of our core values! Hyperproof is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. 

Our company is dedicated to building a diverse, inclusive, and authentic workplace. If you're excited about this role, but your experience doesn't perfectly fit every qualification, we encourage you to apply anyway. You may be just the right person for this role or others.

To ensure a smooth interview process, all candidates will be required to provide a valid phone number that is not a VOIP (Voice Over Internet Protocol) number. This helps us maintain clear and reliable communication throughout your interview experience.