Senior DevSecOps Engineer - RJW Logistics Group - Bolingbrook, IL

Salary: $130,000 - $140,000 annually + MyShare Equity Program

Job Purpose:

The Senior DevSecOps Engineer is an individual contributor responsible for designing, implementing, and operating security controls across the software development lifecycle (SDLC). This role partners closely with Engineering teams, IT Operations, and the Manager of Cyber Security to embed security directly into development workflows, CI/CD pipelines, and cloud platforms. The core function of this role is active, hands-on partnership with Engineering teams to build secure-by-default patterns, improve secure design and delivery practices, and implement security controls within existing development and operational workflows. While the role maintains awareness of governance and compliance requirements, the primary focus is practical engineering execution that results in scalable, auditable, and repeatable security outcomes.

Essential Duties and Responsibilities:

Secure SDLC Implementation & Governance Awareness

Design, implement, and maintain security controls across all SDLC phases
Translate security policy, OWASP guidance, and SOC-aligned requirements into engineering standards and pipeline controls
Embed security checks and guardrails into Agile and DevOps workflows (Jira Software, Azure DevOps)
Ensure SDLC controls generate reliable, repeatable audit evidence supporting SOX and SOC 1 / SOC 2 assessments

Architecture & Design Security

Perform application risk profiling and threat modeling for new and materially changed systems
Review application, API, and platform architectures from a security and risk perspective, providing guidance on required security controls and integration patterns
Design and implement security architecture components, guardrails, and shared controls supporting:

Azure PaaS resources and identity integrations (Entra ID, Azure B2C/External ID)
Web applications hosted on IIS and Node.js
APIs and externally ex