Senior DevSecOps Engineer

About PlexTrac

PlexTrac is a cybersecurity SaaS platform helping security teams streamline reporting, exposure management, and remediation workflows. Our platform is used by penetration testers, red teams, consultants, enterprises, and managed security providers to operationalize security findings and improve collaboration across technical and executive stakeholders.

We are a remote-first company headquartered in the United States with distributed team members across North America, Europe, and Asia. We are committed to ownership, transparency, practical problem-solving, and building products that customers genuinely rely on.

Why This Role Matters

We’re looking for a Senior DevSecOps Engineer as we scale our platform and infrastructure to lead the charge on security and reliability at the system level. This role will work closely with engineering, product, and leadership to architect and implement systems that are resilient, secure, and scalable from day one. You'll be responsible for owning infrastructure, security, and reliability end-to-end, helping to shape the technical strategy.

This is a high-impact, hands-on role for a senior engineer who thrives in a small, fast-paced team environment. Are you up for the challenge? Apply today!

Location: Remote — U.S only.

Key Responsibilities

Cloud & Infrastructure Security - Write and maintain Infrastructure as Code (IaC) with secure defaults, ensuring least privilege access and robust cloud configurations.

Vulnerability Management - Hunt for weaknesses, perform threat modeling, prioritize remediation, and guide engineering teams on how to fix discovered flaws.

Incident Response & Monitoring - Monitor live systems, investigate security anomalies, and respond to breaches.

Develop, deploy, and maintain Infrastructure-as-Code (IaC) in a GCP cloud-based environment

Lead the development and enforcement of security architecture and operational best practices

Establish monitoring, alerting, and incident response strategies across environments

Define and execute on security roadmaps (e.g., threat modeling, vulnerability scanning, IAM policies)

Partner with developers to shift security and reliability left into the SDLC

Support compliance and audit initiatives (SOC2, ISO27001)

Develop and maintain automated CI/CD pipelines for DBs, Servers, containers, and applications using DevSecOps tools to include Terraform, Ansible, GitHub, ArgoCD

Develop integration interfaces using Python, Bash and Go

Deploy and maintain complex modern cloud architectures

Create automated testing plans for infrastructure and applications

Create and update technical documentation (e.g. user guides, infrastructure diagrams)

Work across infrastructure that contains both Linux and Windows

Work and communicate effectively in a group environment with technical and non-technical, management and customer both written and verbally

Utilize robust troubleshooting skills

Instill and apply solid engineering rigor, to include configuration management, testing

Develop/engineer as part of an Agile team

Qualifications

5+ years of experience in DevOps, SRE, or DevSecOps roles, with increasing leadership or ownership

Deep knowledge of cloud infrastructure, with a focus on security, scalability, and cost-efficiency

Strong experience with infrastructure-as-code (Terraform, Ansible)

Fluency in CI/CD automation (GitHub Actions, ArgoCD, etc.)

Strong understanding of security fundamentals: identity and access management, secrets management, encryption, container security, etc.

Familiarity with compliance frameworks like SOC2 or ISO27001

Comfortable writing code and automation scripts (e.g., Python, Bash, Go)

A strategic mindset paired with startup scrappiness—you can zoom out and drive systems-level thinking, and also dive in and ship

Experience with Kubernetes, service mesh (e.g., Istio), and zero-trust architecture

History of leading incident response or large-scale reliability improvements

Strong communication skills across engineering and non-technical stakeholders

Tools & Technical Environment

Cloud environment running VMs with docker containers, GKE clusters and managed services, with an ongoing initiative to modernize the infrastructure further. IaC using Terraform, GitHub, Ansible and ArgoCD. Support for customer hosted installations involving various configurations.

Work Style

We operate as a remote-first, distributed team with a strong asynchronous culture. We value thoughtful communication, autonomy, and collaboration, with core working hours that partially overlap with U.S. Eastern Time.

Benefits

Competitive wellness benefits including Medical, Dental, Vision, Disability and Life

401(k)

Paid Parental Leave

Flexible work schedule - WFH, WFO

Flexible Time Off

World Class Culture

The typical pay range for this role across the U.S. is USD [$140,000.00] to [$170,000.00] per year. PlexTrac utilizes different base pay ranges for different work localities, which allows us to pay employees competitively and consistently based on their home market. The range above reflects the potential base pay across the U.S. for this role; the specific applicable base pay range will depend on the candidate’s work location. In addition to a candidate’s work location, an individual’s base pay will also depend on a number of factors, such as complexity and responsibility of the posted role, job duties/requirements, and relevant experience and skills. Base pay ranges are reviewed and typically updated each year. Offers are made within the base pay range applicable at the time.

Kindly note that PlexTrac may decline applications from individuals located outside the United States. Remote work opportunities are reserved for employees permanently situated within the United States. Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.

At PlexTrac, certain roles are eligible for additional rewards, including merit increases, annual bonus and equity options. These awards are allocated based on individual performance. In addition, certain roles also have the opportunity to earn sales incentives based on revenue or utilization, depending on the terms of the plan and the employee’s role. Benefits listed here vary depending on the nature of employment the Company and the employee’s work location. Employees also have access to healthcare benefits, a 401(k) plan, employee-paid short-term and long-term disability coverage, basic life insurance, uncapped time-off, and several paid holidays.

PlexTrac provides equal employment opportunities to all applicants for employment without regard to actual or perceived race, color, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth and pregnancy-related conditions), gender identity or expression (including transgender status), sexual orientation, marital status, military service and veteran status, physical or mental disability, genetic information, or any other characteristic protected by applicable federal, state or local laws and ordinances. If you require assistance and/or a reasonable accommodation due to a disability during the application or recruitment process, please send a request via email to HR@plextrac.com.

#LI-Remote