← Back to Jobs
Full Time

DevSecOps Engineer - New Charter Technologies, Inc. - Mississippi

New Charter Technologies, Inc.

Apply Now
Mississippi
Google Jobs
Posted 7 days ago

We believe talent deserves a human touch. Your application will be read by an actual person who’s excited to discover the real you.

About the Role

We are looking for an DevSecOps Engineer to join our product engineering team. You will serve as the named security function for a team building internal tooling for a portfolio of managed service provider companies, with a roadmap toward a public-facing SaaS product. This role sits inside engineering and works closely with developers and information security day to day.

The team you are joining is experienced and moves quickly. The right person for this role is comfortable operating as a peer to strong engineers, contributing practical security judgment and ensuring overall security of our solutions. As our product matures toward public availability, you will help ensure our security posture scales with it.

You should be comfortable operating in an exploratory, innovation-oriented environment where not everything will become production software. Right-sizing your security posture to the actual risk is a core expectation of this role.

Key Responsibilities

Embedded Security Partnership

Serve as the primary security resource for engineering teams in direct close coordination with information security teams, advising on design decisions, authentication patterns, and API security as features are built rather than after the factConduct lightweight, developer-friendly threat modeling for new features and services, right-sized to the actual audience and risk profile (internal vs. public-facing)Lead collaboration between engineering and information security teams through architecture and code reviews with actionable, specific guidance that helps teams ship, not slow downResponsible for remediation and enforcement of security standards as set forth by the information security teamDefine and maintain a tiered security standard that distinguishes expectations for internal tooling vs. production SaaS vs. public-facin

Apply for this Position