AmplitudeSenior DevOps Engineer (Security Focus)
Senior DevSecOps Engineer to lead security initiatives, build automation, and secure systems on AWS and Kubernetes.
As a Senior DevSecOps Engineer, you’ll lead security initiatives across infrastructure and product engineering, bringing a DevSecOps mindset to building automation and secure, scalable systems. You’ll collaborate closely with engineering teams and work across a wide range of domains including cloud security, container security, application security, and developer tooling. This is a role for someone who enjoys context-switching across a range of initiatives and isn't afraid to get into the weeds to unblock teams or ship secure solutions quickly. You’ll also participate in a shared on-call rotation to respond to high-risk security issues and incidents in order to help the business minimize exposure.
Success in this role means driving meaningful improvements in our security posture without slowing down development. You’ll reduce time-to-remediate, build automated guardrails, and proactively identify risks before they become incidents. You'll be a trusted partner to engineering, delivering high-velocity solutions that balance security and developer experience.
Key Responsibilities:
- Harden AWS and Kubernetes environments through automation, policy-as-code, and guardrails.
- Own and evolve our DevSecOps strategy across infrastructure and application pipelines.
- Drive end-to-end secure development practices: integrate security into CI/CD, build pre-commit hooks, and improve developer productivity without sacrificing security.
- Create and implement lightweight, scalable security controls that support fast-moving teams.
- Partner with engineering to identify and mitigate risks in architecture, design, and implementation stages.
- Participate in an on-call rotation to resolve critical/high-risk security issues as well as respond to security incidents with urgency and clarity.
- Identify opportunities to fix systemic gaps, reduce recurring pain points, and avoid reactive “whack-a-mole” cycles.
What We’re Looking For:
- 4+ years of experience in security engineering with a strong focus on DevSecOps and secure cloud infrastructure on AWS.
- Hands-on expertise with infrastructure-as-code tools (Terraform, CloudFormation) for AWS, as well as the Kubernetes ecosystem of tools.
- Strong coding/scripting skills in Python, Bash, or equivalent languages for automating security tasks.
- Experience with CI/CD platforms and integrating security controls early in the pipeline.
- Comfortable navigating ambiguity, driving clarity, and leading through execution in fast-paced environments.
- Willingness to go above and beyond, including submitting fixes and supporting teams directly when needed.
- Experience using AI to automate security tasks is a significant plus (e.g. log analysis, code review, alert triage).
- Familiarity with application security concepts is preferred, but not required.