Senior DevSecOps Engineer

Technology at Best Egg is based on agile principles. We believe in quickly iterating and delivering secure solutions that add value to our customers and business. We learn by testing and failing, then apply those experiences to further our progress.

The organization routinely evaluates and incorporates new thinking and technologies into our best practices and standards. Best Egg is a cloud-first organization, embracing cloud technology and the potential it creates for technological innovation. We partner closely with AWS to identify new opportunities to advance our stack and business. We deploy to a modern technology stack leveraging advanced CI/CD and Infrastructure-As-Code targeting both managed containers and serverless platforms based on which solution serves us best.

Join a fast-paced DevOps team that is responsible for all of our AWS cloud infrastructure and implement security automation throughout our infrastructure and SDLC. The role is responsible for securely implementing business and technical requirements of various teams within the organization while maintaining regulatory compliance with programs such as NIST, SOC2, and PCI.

The Senior DevSecOps Engineer adheres to standards, best practices, and internal processes and procedures, however, will also shape change, bringing both enhanced security and innovation to our systems. A “fail fast” approach is encouraged. The Senior DevSecOps Engineer will lead the current security initiatives (HashiCorp Vault, mutual TLS, SSO) to ensure our systems are robust, auditable, and resistant to external and internal threats of all types.

Engineers joining Marlette Funding’s Information Technology Organization can expect to enjoy a culture embracing the concepts of Continuous Delivery, Total Quality Management, Knowledge Sharing, Personal and Career Advancement, Empowerment, Innovation, and Collective Ownership.

Duties & Responsibilities

• Be the Subject Matter Expert of the technical requirements in compliance programs. (NIST, SOC2, PCI)
• Collaborate with InfoSec to identify security improvements and develop a roadmap to implement the improvements using automation and DevOps tools.
• Build and maintain HashiCorp Vault infrastructure and integrations.
• Develop and maintain client libraries to integrate DevSecOps tools.
• Develop Sentinel policies for HashiCorp Terraform.
• Maintain, mature, and audit security processes in our code and infrastructure.
• Automate and codify supporting security systems in all phases of the SLDC.
• Participate in compliance audits as security SME.
• Mentor junior team members and co-workers on security best practices.
• Work and collaborate effectively in a geographically dispersed team.
• Create and document standardized processes, procedures and policies.
• Keep up to date on DevSecOps trends and best practices.
• May need to work off-hours in response to production issues or high impact system changes

Requirements

Recommended

• Demonstrated AWS experience and/or AWS Associate Level Certification
• Experience with AWS security and infrastructure best practices.
• Experience with compliance programs such as NIST, SOC2, and/or PCI.
• Experience with Kubernetes and securing container workloads.
• Experience with the infrastructure automation tools HashiCorp Terraform and AWS CloudFormation.
• Experience with security automation tools like HashiCorp Vault, AWS KMS, SSM, Secrets Manager, AWS Inspector.
• Experience with a programming language such as python, nodejs, go, c# or java
• Experience with networking concepts, terminology, and configuration
• Experience with PKI infrastructure, authentication protocols like OIDC, OAuth, and SAML.
• The ability to communicate with technical and non-technical co-workers, at all levels of the org chart
• Flexibility. There are multiple Teams at Marlette, all working on separate projects and individual schedules. The Technology Team often has to respond to incidents (system crashes, network outages, performance spikes) and juggle priorities, all while making steady, reportable progress on sprint objectives
• Willingness to speak openly, honestly, and professionally in planning meetings, then accept the decision of the group (or group leader) and lean in with the Team to accomplish the set task
• AWS Professional level certification or Security Specialty certification
• Demonstrated Systems Administration ability on both Windows and Linux
• Experience with Active Directory and AD Group Policies
• Some knowledge of different database platforms especially as implemented in the AWS cloud, and the SQL language

In addition to semi-monthly salary payments, this position is also eligible for an annual incentive bonus based on individual and company performance. Job tier 205 base salary range 85,000 - 136,000

Best Egg is a consumer financial technology platform that aims to help people feel more confident about their everyday finances through a suite of products and resources. Our digital financial platform offers simple, accessible, and personalized financial solutions including personal loans, credit cards, and a financial health resource center.

Our culture and values are one of the core reasons why our customers keep returning to Best Egg. We are committed to championing a culture of inclusiveness and diversity of thought, and we focus on providing a safe, flexible, and collaborative work environment. Our associates are encouraged to engage in creative problem solving, and we promote opportunities for growth and enrichment across the organization. 

If you are inspired by inspiring others, Best Egg is the place for you.

Best Egg celebrates diversity and equal opportunity. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better we will grow.

Employee Benefits

Best Egg offers many additional benefits for our employees, including (but not limited to):

· Pre-tax and post-tax retirement savings plans with a competitive company matching

program

· Generous paid time-off plans including vacation, personal/sick time, paid short--

term and long-term disability leaves, paid parental leave, and paid company

holidays

· Multiple health care plans to choose from, including dental and vision options

· Flexible Spending Plans for Health Care, Dependent Care, and Health

Reimbursement Accounts

· Company-paid benefits such as life insurance, wellness platforms, employee

assistance programs, and Health Advocate programs

· Other great discounted benefits include identity theft protection, pet insurance,

fitness center reimbursements, and many more!