Senior DevSecOps Engineer – Real Estate

November 20

Apply Now

Receive Emails with Similar Jobs

Truelogic Software

WebsiteLinkedInAll Job Openings

SaaS • B2B • Enterprise

Truelogic Software is a nearshore software development company specializing in agile staff augmentation services. They focus on providing custom outsourced software development with a team of highly skilled engineers from Latin America. Truelogic Software partners with both startups and Fortune 500 companies, offering solutions that align with their clients' time zones and ensuring high-quality outcomes through collaboration and responsiveness. With a presence in over 25 countries, Truelogic emphasizes remote work for better quality of life, and their engineers are experienced in various industries, delivering a wide range of successful projects globally.

501 - 1000 employees

Founded 2004

☁️ SaaS

🤝 B2B

🏢 Enterprise

📋 Description

• Secure development and engineering support • Provide application security (AppSec) consulting and guidance to engineering teams on vulnerability remediation and secure coding practices. • Manage and tune SAST, SCA, and secret-scanning tools; assist with findings triage and developer enablement. • Implement and maintain supply chain security measures, including SBOM generation and dependency integrity checks. • Collaborate with DevOps to integrate security checks into CI/CD pipelines and infrastructure-as-code (IaC). • Configure and manage key security and cloud-native tools (AWS Security Hub, GuardDuty, Inspector, Config, etc.). • Partner with teams to harden configurations for WAF, VPN/ZTNA, and endpoint security. • Contribute to infrastructure automation and policy-as-code implementations for security baselines.

🎯 Requirements

• 5+ years of experience in DevSecOps, application security, or related roles. • Strong understanding of cloud environments (AWS preferred) and associated native security services. • Experience with CI/CD tools (e.g., GitHub Actions, Jenkins, CircleCI) and integrating security into pipelines. • Hands-on experience with SAST/SCA tools (e.g., SonarQube, Snyk, Semgrep, Trivy) and vulnerability management platforms. • Familiarity with IaC (Terraform, CloudFormation) and security configuration management. • Comfortable with scripting and automation (Python, Bash, or similar). • Strong communication skills and the ability to collaborate effectively with other departments asynchronously or via Slack. • Familiarity with AI-based coding tools, MCP servers, and secure implementation considerations preferred. • Working knowledge of SIEM platforms and log analysis tools a plus (e.g., Splunk, Panther, Coralogix). • Knowledge of security frameworks and best practices a plus (NIST CSF, CIS Benchmarks, OWASP Top 10). • Self-directed, curious, and able to manage priorities in a fast-paced environment.

🏖️ Benefits

• 100% remote work: Enjoy the freedom to work from the location that helps you thrive. All you need is a laptop and a reliable internet connection. • Highly competitive USD pay: Earn excellent, market-leading compensation in USD that goes beyond typical market offerings. • Paid time off: We value your well-being. Our paid time off policies ensure you have the chance to unwind and recharge when needed. • Work with autonomy: Enjoy the freedom to manage your time as long as the work gets done. Focus on results, not the clock. • Work with top American companies: Grow your expertise working on innovative, high-impact projects with industry-leading U.S. companies.