DevSecOps Engineer

About Fractal

Fractal is revolutionizing the payments landscape by offering simple and efficient payment processing services for US-based SaaS platforms. Our mission is to improve vertical SaaS by simplifying and enhancing payment solutions, making us the preferred choice for SaaS companies looking to integrate financial products and boost revenue efficiently. At Fractal, we foster a dynamic work environment where we move quickly and innovation thrives. Our culture is built on curiosity, bold ideas, teamwork, and continuous improvement. Join us to be part of a mission-driven company where your contributions directly impact the future of the payment industry.

Job Summary

As a DevSecOps Engineer, you will play a crucial role in integrating security practices into our development and operations processes. You will be responsible for ensuring the security, reliability, and efficiency of our infrastructure and applications. Your role will involve working closely with development, operations, and security teams to implement and maintain robust security measures across all stages of the software development lifecycle.

Key Responsibilities

• Implement and maintain security best practices in CI/CD pipelines and throughout the software development lifecycle.
• Develop and manage security infrastructure, tools, and processes.
• Monitor and respond to security incidents and vulnerabilities.
• Conduct security assessments and audits to identify and mitigate risks.
• Collaborate with development and operations teams to ensure secure coding practices and secure deployment processes.
• Automate security testing and integrate security checks into the CI/CD pipeline.
• Stay updated with the latest security trends, tools, and techniques to continuously improve Fractal's security posture.
• Provide guidance and training to development and operations teams on security best practices.

Required Qualifications

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 5 years of experience in DevOps, security engineering, or a related role.
• Strong understanding of DevSecOps principles and practices.
• Experience with CI/CD tools and processes (e.g., Jenkins, GitLab CI/CD).
• Proficiency in security tools and technologies (e.g., vulnerability scanners, intrusion detection systems, SIEM).
• Knowledge of cloud security best practices (e.g., AWS, Azure, Google Cloud).
• Familiarity with containerization and orchestration technologies (e.g., Docker, Kubernetes).
• Excellent problem-solving skills and attention to detail.
• Strong communication and collaboration skills.

Preferred Qualifications

• Advanced degree in a relevant field.
• Experience in the fintech or SaaS industry.
• Experience with AWS. Knowledge of all AWS services. Experience with CloudWatch.
• Experience in Python
• Experience in building CI/CD pipelines
• Relevant security certifications (e.g., CISSP, CISM, CEH).
• Proficiency with scripting languages (e.g., Python, Bash).
• Knowledge of compliance frameworks and standards (e.g., ISO 27001, SOC 2, GDPR).

Benefits

• Competitive salary and performance bonuses.
• Employee stock option plan.
• Comprehensive health, dental, and vision insurance.
• Retirement savings plans with company match.
• Professional development opportunities.
• Flexible work arrangements.