Snr. DevSecOps (Remote)

Remote positions open to the US only. 

The Snr. DevSecOps performs all processes and procedures necessary to ensure the security of KnowBe4 cloud computing environments. In addition, the primary responsibility is to protect the privacy, confidentiality, integrity, and availability of company and customer data by writing secure infrastructure as code, implementing security tooling into the cloud and CI/CD pipelines and triaging cloud security threats and findings. Must be able to work with multiple engineering teams across the business to provide a proactive approach to ensure the security in our AWS and Azure cloud environments. 

Responsibilities:

• Collaborate with the development and engineering teams to architect and develop secure applications and infrastructure
• Design and implement CI/CD pipelines to automate security in the SDLC
• Implement and monitor for cloud security threats and security findings using tools like Wiz
• Build and maintain infrastructure as code (IaC) solutions using tools like Terraform
• Manage AWS/Azure services, including ECS/Container/Lambda Apps, S3/blob storage etc
• Automate manual tasks
• Ensure the cloud compliance posture is following relevant standards to meet our audit requirements
• Provide cloud security guidance and best practices
• Design, analyze, and document cloud security principles, best practices, runbooks, and similar
• Create relevant Infosec policies and procedures
• Performs root cause analysis on identified vulnerabilities and identified incidents
• Perform security reviews and penetration testing across company cloud infrastructure

Minimum Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or similar preferred
• 5+ years equivalent work experience in Information Security, SRE, or DevOps may substitute for formal education.
• AWS or Azure Cloud Expertise: Strong knowledge of AWS/Azure services
• Proficient authoring scripts in one or more programming languages (e.g. Python, Ruby, Javascript).
• Infrastructure-as-Code: Proficiency in Terraform or similar
• CI/CD Workflows: Expertise in designing and maintaining automated pipelines for continuous delivery - GitLab is preferred
• Experience with Cloud Security tools Wiz, Lacework, Orca or similar
• Proficient authoring scripts in one or more programming languages (e.g. Python, Ruby, Javascript).
• Certifications in AWS, Azure and specifically AWS Security highly desirable

The base pay for this position ranges from $105,000 - $130,000, which will vary depending on how well an applicant's skills and experience align with the job description listed above.

We will accept applications until 5/19/25.