[Remote] DevOps Engineer

Note: The job is a remote job and is open to candidates in USA. Ciphertext Solutions, Inc. builds secure, scalable financial technology solutions enabling digital innovation for banks, credit unions, and fintech partners. They are seeking a DevSecOps Engineer to help secure, automate, and operate the infrastructure and delivery pipelines that power their fintech platform, focusing on cloud infrastructure, software delivery, security engineering, and compliance.

Responsibilities

• Help design, implement, and maintain secure cloud infrastructure primarily in Google Cloud Platform (GCP)
• Manage and improve infrastructure as code using Terraform and related automation tooling
• Strengthen network security controls including firewalls, routing, segmentation, VPNs, and secure connectivity between systems and partners
• Support certificate lifecycle management, secrets handling, and secure configuration management across environments
• Partner with engineering teams to improve environment consistency, hardening, and operational resilience
• Embed security practices throughout the software development lifecycle, from design through deployment and operations
• Improve and maintain CI/CD pipelines with a focus on secure build and release processes, automated checks, and deployment reliability
• Help implement secure coding guardrails, dependency management, and practical application security controls aligned with OWASP guidance
• Collaborate with developers to reduce security risk early by supporting threat modeling, security reviews, and remediation planning
• Contribute to automation that improves delivery quality, repeatability, and auditability
• Monitor systems and security tooling to identify vulnerabilities, suspicious activity, misconfigurations, and operational risks
• Investigate, document, and help remediate security incidents and operational issues
• Participate in root-cause analysis and post-incident improvement efforts to reduce repeat issues
• Support on-call or after-hours response when urgent security or infrastructure issues arise
• Support security and compliance initiatives related to SOC 2, PCI DSS, and internal control requirements
• Help maintain policies, procedures, technical documentation, and operational runbooks related to infrastructure and security practices
• Assist in evidence collection, control validation, and remediation tracking for audits and certifications
• Perform risk assessments, security reviews, and infrastructure audits as needed
• Work closely with software engineers, product stakeholders, and leadership to align infrastructure and security improvements with business priorities
• Educate team members on secure development, operational hygiene, and security awareness where appropriate
• Contribute to engineering best practices around automation, observability, reliability, and secure system design
• Present findings, recommendations, and status updates clearly to technical and non-technical stakeholders

Skills

• Bachelor's degree in computer science, cybersecurity, information systems, or a related field, or equivalent practical experience
• 5+ years of experience in DevOps, DevSecOps, cloud infrastructure, security engineering, or a closely related role
• Strong hands-on experience with Google Cloud Platform (GCP), Linux administration, and infrastructure automation
• Professional experience with Terraform, shell scripting, Git-based workflows, and CI/CD pipelines
• Strong understanding of networking fundamentals including firewalls, routing, subnetting, and site-to-site VPNs
• Experience securing cloud-native environments and supporting production infrastructure in high-availability systems
• Familiarity with security best practices across the software development lifecycle, including secure configuration, secrets management, and vulnerability remediation
• Working knowledge of compliance and control frameworks such as SOC 2 and PCI DSS
• Experience investigating incidents, supporting root-cause analysis, and improving operational controls
• Strong communication skills and the ability to work effectively across engineering, product, and leadership teams
• High degree of ownership, sound judgment, and the ability to work calmly under pressure
• Experience with Palo Alto Networks firewalls or comparable network security platforms
• Knowledge of Java-based application environments and how infrastructure/security concerns intersect with backend services
• Familiarity with application security tooling, dependency scanning, IaC scanning, or container/image security practices
• Experience with PKI, TLS, certificate management, and cryptographic protocols in production systems
• Exposure to observability and monitoring platforms for logs, metrics, tracing, and alerting
• Relevant certifications such as CISSP, CCSP, Security+, Google Cloud certifications, or similar
• Experience working in fintech, payments, banking, or other regulated environments
• Familiarity with incident response processes, audit readiness, and evidence-based compliance operations

Benefits

• Competitive compensation and a flexible remote work environment.

Company Overview

Company H1B Sponsorship