DevSecOps Engineer

Who we are is what we do.

Deel and our family of growing companies are made up of global teams dedicated to helping businesses hire anyone, anywhere, easily. 

The team comprises over three thousand self-driven individuals spanning over 100 countries, and our unified yet diverse culture keeps us continually learning and innovating the platform and products for customers.

Companies should be able to hire the best talent anywhere in the world, so we are building the best platform to make that a reality. Our market-leading technology, expertise, and global team are crucial to the platform’s success. We deliver the best products and features in our space, enabling millions of jobs worldwide and connecting the global workforce with the best companies and opportunities.

Why should you be part of our success story?

A 30-mile hiring radius should no longer dictate how companies hire because exceptional talent lives everywhere. Deel sees a world without hiring borders and endless talent that pairs perfect candidates with great companies.

We offer global teams all the tools they need to hire, onboard, manage, pay, and scale at full speed. We aim to foster a diverse global economy by building a generational platform that seamlessly connects companies with talent worldwide.

After our successful Series D in 2021, we raised another $50M in 2023, doubling our valuation to $12B. There’s never been a more exciting time to join Deel — the international payroll and compliance market leader.

We are currently seeking a DevSecOps Engineer to join our team. If you have a passion for development, security, and infrastructure, we invite you to apply for this exciting opportunity. You'll have the chance to work alongside experienced professionals in the IT industry who provide mutual support and knowledge sharing. As we continuously expand our product offerings and customer base, you will play a key role in leading our growth journey.

Responsibilities

Security Automation: Develop and maintain automated security tools and processes to identify vulnerabilities, perform code analysis, and conduct security testing. This includes integrating security scanners, static code analysis tools, and vulnerability assessment tools into the CI/CD pipeline.

Secure Infrastructure: Work with infrastructure and operations teams to design and implement secure cloud infrastructure, network architecture, and deployment processes. This involves ensuring proper access controls, encryption, and monitoring are in place.

Continuous Monitoring: Implement security monitoring tools and processes to proactively identify and respond to security events and anomalies. This includes log analysis, intrusion detection, and system monitoring.

Secure Coding Practices: Promote and enforce secure coding practices within the development teams. Provide guidance on secure coding techniques, code reviews, and security testing methodologies.

Collaboration and Communication: Foster collaboration and communication between development, operations, and security teams. Act as a liaison to ensure that security requirements are understood and integrated into the development process.

Compliance and Auditing: Assist in compliance assessments and audits to ensure adherence to regulatory requirements and industry standards. Collaborate with auditors and provide necessary documentation and evidence of security controls.

Desired Skills and Experience

• 3+ years of relevant DevOps, SecOps, DevSec work experience in Production environments

• Software Development: Basic programming skills and experience with software development practices is desired. Understanding languages like JavaScript, TypeScript, Python and concepts such as version control (e.g., Git), continuous integration/continuous delivery (CI/CD) pipelines

• Security Knowledge: Familiarity with security principles, standards, and best practices is essential. This includes knowledge of common security vulnerabilities (e.g., OWASP Top 10), secure coding practices, encryption, authentication, access control, and security testing methodologies.

• DevOps Practices: Proficiency in DevOps methodologies and tools is important. This involves understanding CI/CD pipelines, infrastructure automation (e.g., using tools like Docker, Kubernetes), configuration management, and monitoring/observability practices.

• Risk Assessment and Mitigation: The ability to assess risks and apply appropriate security controls is crucial. Understanding threat modeling, risk assessment techniques, vulnerability management, and incident response planning can help identify and mitigate security risks effectively.

• Collaboration and Communication: DevSecOps requires effective collaboration and communication skills. You should be able to work closely with cross-functional teams, including developers, security professionals, and operations personnel, to promote security practices and integrate security seamlessly into the development process.

• Automation and Tooling: Proficiency in automation tools and technologies is beneficial. Knowledge of tools like security scanners (e.g., SAST, DAST), vulnerability management systems, log analysis tools, and security-focused frameworks can help automate security processes and improve efficiency.

• Security Certifications: Obtaining relevant security certifications, such as Certified Secure Software Lifecycle Professional (CSSLP), Certified Ethical Hacker (CEH), or Certified Information Systems Security Professional (CISSP), can enhance your credibility and demonstrate your commitment to security practices.

Total Rewards

Our workforce deserves fair and competitive pay that meets them where they are. With scalable benefits, rewards, and perks, our total rewards programs reflect our commitment to inclusivity and access for all. 

Some things you’ll enjoy

• Provided computer equipment tailored to your role

• Stock grant opportunities dependent on your role, employment status and location

• Additional perks and benefits based on your employment status and country

• The flexibility of remote work, including WeWork access where available

At Deel, we’re an equal-opportunity employer that values diversity and positively encourage applications from suitably qualified and eligible candidates regardless of  race, religion, sex, national origin, gender, sexual orientation, age, marital status, veteran status, disability status, pregnancy or maternity or other applicable legally protected characteristics.

Unless otherwise agreed, we will communicate with job applicants using Deel-specific emails, which include @deel.com and other acquired company emails like @payspace.com and @paygroup.com. You can view the most up-to-date job listings at Deel by visiting our careers page.

Deel is an equal-opportunity employer and is committed to cultivating a diverse and inclusive workplace that reflects different abilities, backgrounds, beliefs, experiences, identities and perspectives.

Deel will provide accommodation on request throughout the recruitment, selection and assessment process for applicants with disabilities. If you require accommodation, please inform our Talent Acquisition Team at recruiting@deel.com of the nature of the accommodation that you may require, to ensure your equal participation.