Senior DevSecOps Engineer

Description:

At Dream, we redefine cyber defense vision by combining AI and human expertise to create products that protect nations and critical infrastructure. This is more than a job; it’s a Dream job. Dream is where we tackle real-world challenges, redefine AI and security, and make the digital world safer. Let’s build something extraordinary together. 

Dream's AI cybersecurity platform applies a new, out-of-the-ordinary, multi-layered approach, covering endless and evolving security challenges across the entire infrastructure of the most critical and sensitive networks. Central to our Dream's proprietary Cyber Language Models are innovative technologies that provide contextual intelligence for the future of cybersecurity.  

At Dream, our talented team, driven by passion, expertise, and innovative minds, inspires us daily. We are not just dreamers, we are dream-makers. 

We are looking for an experienced DevSecOps Engineer to join our DevOps core platform team and help strengthen the security of our cloud-native infrastructure and development pipelines.

You will work closely with our CISO, DevOps team, and developers to integrate security practices across the entire software development lifecycle (SDLC), helping ensure a secure, scalable, and resilient platform across cloud and on-prem environments.

• Integrate security practices into CI/CD pipelines and across the SDLC
• Design and implement automated security solutions (vulnerability scanning, compliance checks, threat detection)
• Build and maintain Infrastructure as Code (IaC) for secure, scalable cloud environments (Terraform, Ansible)
• Automate security controls and operational processes across cloud and Kubernetes environments
• Design, implement, and optimize CI/CD pipelines with a focus on security, reliability, and performance
• Secure cloud and on-prem environments (IAM, network controls, encryption best practices)
• Manage and harden Kubernetes workloads, including configuration, access control, and image security
• Collaborate with DevOps, developers, and security teams to improve system reliability and overall security posture
• Conduct security assessments, penetration testing, and compliance audits
• Monitor threats, respond to incidents, and improve incident response processes
• Promote DevSecOps culture by guiding teams on secure coding, infrastructure, and deployment practices
• Enhance observability by integrating monitoring, logging, and SIEM solutions