DevSecOps Engineer

1w1 week ago

Wade Trim

Detroit, US · Full-time · $130,000 – $170,000

About this role

We are seeking a hands-on DevSecOps/AI Security Engineer to embed security through our SDLC, cloud platforms, and machine learning pipelines. You will integrate and automate security controls in continuous integration and continuous delivery pipelines. Harden cloud and containerized environments and secure AI/ML systems across the full lifecycle, from data ingestion to inference.

Review and triage findings from code, dependency, and infrastructure scans; drive remediation with software engineer teams. Perform secure code reviews for high risk changes, focusing on authentication, authorization, input validation, crypto, and secrets handling. Continuously validate cloud posture on Azure/AWS against guardrails using CSPM/Policy-as-Code.

Harden containers by enforcing admission controls, image provenance, runtime policies, and least-privilege service accounts. Test AI systems daily for adversarial risks like prompt injection, data poisoning, model theft, and jailbreaks. Partner closely with software engineers, IT operations, and market segment leadership to reduce risk while maintaining delivery velocity.

Validate privacy and compliance in AI use cases with PII masking, DLP, and consent flags. Flexible hybrid-remote work schedule available after 30 days of employment. Excellent benefits package includes medical, dental, 401(k), performance bonuses, employee stock program, and various Employee Resource Groups for development and wellness.

Requirements

5+ years of experience with cloud platform services and DevSecOps practices
Experience securing Azure/AWS cloud environments and implementing CSPM/Policy-as-Code
Proficiency in container security including admission controls, image provenance, and runtime policies
Knowledge of AI/ML security across lifecycle including adversarial testing and privacy compliance
Expertise in secrets management (KMS, vaults) and eliminating hardcoded credentials
Ability to investigate alerts, perform root cause analysis, and document playbooks
EC-Council Certified DevSecOps Engineer (highly desired)
ISACA Advanced AI Security Management (highly desired)

Responsibilities

Review and triage findings from code, dependency, and infrastructure scans; drive remediation with software engineer teams and track to closure
Perform secure code reviews for high risk changes, focusing on authentication, authorization, input validation, crypto, and secrets handling
Continuously validate cloud posture (Azure/AWS) against guardrails (CSPM/Policy-as-Code); open tickets for misconfigurations and follow through
Harden containers: enforce admission controls, image provenance, runtime policies, and least-privilege service accounts
Test AI systems for adversarial risks daily (prompt injection, data poisoning indicators, model theft, jailbreaks, indirect prompt attacks)
Validate privacy & compliance in AI use cases (PII masking, DLP, consent flags) and enforce policy in pipelines and serving layers
Rotate and validate secrets in code, pipelines, and model infra (KMS, vaults); eliminate hardcoded credentials and enforce short lived tokens
Tune detections for DevSecOps and AI signals (SIEM/SOAR rules for code repositories, registries, pipelines, model endpoints)

Benefits

Medical, dental, vision, life insurance, short and long-term disability coverage
Education reimbursement, 401(k), performance bonuses, and employee stock program
Employee Resource Groups: Young Professionals Group, Women at Wade Trim, Diversity, Equity and Inclusion
Professional Development, Leadership Development, Rotation Program, Mentor Program
Sustainability Program and Wellness Program
Flexible hybrid-remote work schedule available after 30 days of employment