Sr Cybersecurity DevSecOps Engineer

 The Sr. Cybersecurity DevSecOps Engineer on the CIAM delivery team is responsible for integrating security practices into the software delivery lifecycle, securing CIAM platform configurations and integrations, and ensuring that identity services are delivered in a resilient, compliant, and automated manner. The role supports team leadership by applying secure DevOps processes and collaborating with architecture, development, operations, product, and security teams to operationalize security controls across CI/CD pipelines, infrastructure, and identity flows.  

This is a hands-on engineering role focused on enablement, automation, and risk reduction rather than policy development.

To join our dynamic team, we require candidates to be residents of WA, OR, ID, AZ, TX, GA, SC, NC, CA or VA. If you’re located in Washington state and within a reasonable driving distance from Tukwila, we are requesting that you come into our HQ on Tuesdays & Wednesdays.  For those candidates that live outside the commute distance of TFC and in any of our approved remote work locations, this role will be remote. Remote or onsite, we are committed to ensuring you are fully engaged and included in our collaborative environment 

WHAT YOU’LL DO:  

• Team Support: Guide developers and engineers on secure engineering practices and help support adoption of security best practices. 

• Platform Strategy: Contribute to roadmap and strategy development for platform and infrastructure components. 

• CIAM Security: Secure configuration and deployment of SaaS CIAM environments. Validate tenant configurations against enterprise security standards.

• Security Integration: Ensure that security practices are embedded into the software development lifecycle (SDLC) from design through deployment. 

• Secure Design: Ensure that security checks are consistently applied and that vulnerabilities are identified and addressed early in the development process. 

• Documentation: Develop clear security architecture documentation, data flow diagrams, and process artifacts. 

• Infrastructure as Code: Lead the design and implementation of secure infrastructure using Infrastructure as Code (IaC) tools such as Terraform, Ansible, or Kubernetes to create and manage infrastructure that is both scalable and secure.  

• Automation: Build tools, scripts, and policy as code solutions to automate security enforcement across CI/CD pipelines. 

• Monitoring: Define logging, monitoring, and alerting requirements to strengthen detection and operational response. 

• Compliance: Support GDPR, HIPAA, and internal compliance requirements across CIAM systems and workflows. 

• Risk Management: Conduct risk assessments and implement controls that reduce exposure across delivery processes. 

• Security Culture: Promote shared responsibility for security across development and operations teams. 

• Continuous Improvement: Identify opportunities to enhance security posture, tooling efficiency, and platform resilience. 

• On-Call Support & Incident Response: Provide on-call support as needed and participate in the Security Incident Response Team to ensure quick resolution of security events.

WHAT YOU’LL GAIN:  

• Opportunities to directly influence the security of enterprise identity and access management. 

• A collaborative environment with modern tools across automation, IaC, CI/CD, and cloud platforms. 

• Cross functional partnerships with architects, developers, and security professionals. 

• Engaging work that involves solving complex technical security challenges. 

• Continuous learning in identity protocols, cloud technologies, and enterprise security frameworks. 

QUALIFICATIONS: 

Minimum Qualifications: 

• Bachelor’s degree in computer science or a related field, or equivalent experience. 

• Minimum 5 years of experience in DevSecOps, security engineering, or related discipline, including experience supporting or leading engineering teams. 

Desired Qualifications:  

• Proficient in problem solving, leadership, and communication skills. 

• Knowledge of identity and authentication concepts (OAuth2, OIDC, SAML, token-based authentication, session security, API authorization). 

• knowledge of security principles such as threat modeling, risk assessment, and vulnerability management. 

• Ability to stay current with emerging technologies through work experience or continued learning. 

• Advanced scripting proficiency (Python, Bash). 

• Experience with CI/CD platforms such as Jenkins or GitLab CI. 

• Knowledge of cloud platforms (AWS, Azure, GCP) and core network/application security principles. 

• Familiarity with security frameworks such as NIST or ISO 27001. 

• Experience securing SaaS or cloud native platforms. 

• Experience working in Agile environments.

​
JOIN THE JOURNEY: