Senior/Staff DevSecOps Engineer
wherobots
We are looking for passionate, skilled, and experienced DevSecOps engineers or Cloud Infrastructure Engineers with a security background to join Wherobots’ dynamic team in building and operating the geospatial cloud database of the future, its cloud platform, and control plane. As a engineer in our growing Cloud Infrastructure team, you will focus on implementing and strengthening our company’s security and compliance posture through the adoption of best practices, compliance frameworks and tools to offer best-in-class security guarantees to our customers.
You will help define and implement Wherobots’ infrastructure-as-code, shifting left our security and compliance requirements into secure-by-design engineering and best practices to deliver a secure, reliable, and highly-available enterprise SaaS solution to our customers.
We are 100% cloud-native, and build our product using modern and reliable tools and technologies. We use Python, Java, and Golang services deployed on cloud-based Kubernetes environments. For more information on our engineering culture and processes, see Engineering at Wherobots.
If you are passionate about security and building cutting-edge cloud infrastructure, and want to be part of a fast-growing company at the forefront of geospatial technology, we would love to hear from you. Apply now and join the Wherobots team!
Responsibilities
- Champion Security: Promote a security-first mindset within the development team, advocate for secure coding practices, and guide the organization towards secure-by-design principles. 
- Automate Security: Design, implement, and maintain automated security tools and processes in our CI/CD pipelines. This includes static/dynamic code analysis, vulnerability scanning, and security testing. 
- Infrastructure Security: Harden our cloud infrastructure (AWS, GCP, or Azure) by implementing security best practices, monitoring for threats, and responding to incidents. 
- Compliance and Auditing: Ensure our systems and processes comply with relevant security standards and regulations. Assist with security audits and penetration testing. 
- Incident Response: Develop and maintain incident response plans for security incidents. Participate in incident response activities, including investigation, containment, and remediation. 
- Monitoring and Logging: Implement robust monitoring and logging solutions to detect and analyze security events. 
- Stay Current: Keep abreast of the latest security threats, vulnerabilities, and best practices. 
Qualifications
- Strong technical background, including 5+ years of experience in a DevSecOps, cloud infrastructure, or related roles, with a focus on security automation and compliance in cloud-native SaaS environments, reducing friction, and shifting left security and compliance activities 
- Proficiency in Python, Bash, Terraform, Docker, and Kubernetes 
- Hands-on experience with cloud platforms such as AWS and/or Google Cloud 
- Hands-on experience with SDLC and CI/CD platforms such as GitHub or GitLab 
- Experience deploying and operating security tools like SAST/DAST scanners, vulnerability management solutions (e.g., Nessus, Qualys), and intrusion detection systems 
- Solid understanding of networking, databases, cloud environments, Linux-based operating systems, command-line tools, modern web technologies and protocols 
- Excellent problem-solving and troubleshooting skills 
- Strong communication and collaboration abilities, with a proven track record of working effectively in a hybrid or distributed team environment 
Compensation and benefits
Wherobots offers competitive compensation, equity, and benefits. The base salary range for this position is $175k-$275k per year.
Although we aim to establish a primary engineering presence in the San Francisco Bay Area, we provide flexibility and choice in the working arrangement for most roles, including remote and/or in-office roles. Please note that the base pay range is a guideline and for candidates who receive an offer, the base pay will vary based on factors such as work location, seniority, skills, and experience of the candidate.
Wherobots provides a competitive benefits package to all full-time employees, including 100% coverage of medical, dental, and vision insurance, access to a 401(k) plan with employer match, and unlimited PTO.
About Wherobots
Wherobots was founded by the original creators of Apache Sedona to build the first fully-managed, highly scalable geospatial cloud database and analytics platform: Wherobots Cloud. Geospatial, location-enabled, and satellite imagery data are quickly becoming a critical and valuable source of information and insights to a broad array of industries, from logistics and insurance to financial or climate tech companies. Wherobots helps those companies bring their geospatial data down to earth and drive value from it for their business and their customers through full-featured and scalable computation, querying, analytics, and visualization capabilities.
 
             
    