DevSecOps Compliance Engineer

1 Month ago • 5 Years + • Devops • $105,000 PA - $135,000 PA

Job Summary

Job Description

Fortra is seeking a highly skilled DevSecOps Compliance Engineer to join their Risk and Security team. This hybrid role requires a combination of DevSecOps engineering expertise and auditing oversight. The engineer will be responsible for designing, implementing, and continuously improving secure development and operational practices. This includes auditing systems, processes, and pipelines to ensure compliance with security and risk management requirements. The position is crucial for integrating security throughout the software development lifecycle (SDLC) via automation, policy enforcement, and continuous monitoring.
Must have:
  • Bachelor's degree in Computer Science, Information Security, or related field.
  • 5+ years of experience in DevSecOps, application security, or infrastructure security.
  • Strong experience with CI/CD tools (Jenkins, GitLab CI/CD, GitHub Actions).
  • Familiarity with containerization (Docker, Kubernetes).
  • Proficiency in scripting languages (Python, Bash) and IaC (Terraform, CloudFormation).
  • Experience with security audits (SOC 2, NIST, ISO 27001, CIS).
  • In-depth knowledge of cloud security (AWS, Azure, GCP) and automation.
  • Understanding of vulnerability management and secure coding practices.
Good to have:
  • Industry certifications (CISSP, CISA, OSCP, GIAC, AWS/GCP Security Engineer).
  • Experience with security monitoring tools (Snyk, Aqua, Prisma Cloud, SonarQube).
  • Familiarity with enterprise risk management and GRC tools.
  • Strong analytical and communication skills.
Perks:
  • Health, dental, and vision coverage as of hire
  • Immediate enrollment in 401(k), HSA, and FSA plans
  • Flexible PTO policy
  • Tuition and personal enrichment reimbursement
  • Option to enroll in ID Theft Protection Program

Job Details

Whether you’re an experienced professional or just getting started, your contributions matter at Fortra. If you’re passionate about tackling meaningful challenges alongside talented team members committed to helping each other succeed, all while having lots of fun, we want to hear from you. We offer competitive benefits and salaries, personal and professional development opportunities, flexibility, and much more

At Fortra, we’re breaking the attack chain. Ready to join us? 

We are seeking a highly skilled and detail-oriented DevSecOps Compliance Engineer to join our Risk and Security team. This hybrid role combines the hands-on engineering expertise of DevSecOps with the critical oversight of an auditor. The ideal candidate will be responsible for designing, implementing, and continuously improving secure development and operational practices while auditing systems, processes, and pipelines to ensure compliance with security and risk management requirements.

This position plays a key role in ensuring that security is integrated across the entire software development lifecycle (SDLC), from development to deployment and operations, through automation, policy enforcement, and continuous monitoring.

WHAT YOU'LL DO

Engineering Responsibilities

  • Design, build, and maintain secure CI/CD pipelines with embedded security controls.
  • Implement and manage automated security tools for static and dynamic code analysis, container scanning, secret detection, and infrastructure-as-code validation.
  • Collaborate with development, QA, and operations teams to integrate security into agile workflows and DevOps practices.
  • Identify and remediate vulnerabilities in source code, dependencies, container images, and cloud configurations.
  • Maintain and improve security infrastructure, including IAM policies, logging, monitoring, and alerting systems.
  • Champion "security as code" practices and drive adoption of DevSecOps principles across teams.

Auditing & Risk Responsibilities:

  • Conduct regular security audits and reviews of infrastructure, code repositories, build pipelines, and deployment processes.
  • Monitor compliance with internal security standards, industry best practices, and regulatory requirements (e.g., SOC 2, ISO 27001, NIST).
  • Document and report findings, recommend remediation, and track resolution through completion.
  • Develop and maintain security baselines, controls, and metrics for secure software delivery.
  • Support incident response efforts, ensuring evidence collection and root cause analysis are performed in alignment with audit requirements.
  • Provide technical input into risk assessments and contribute to threat modeling and security reviews.

QUALIFICATIONS

  • Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent work experience).
  • 5+ years of experience in DevSecOps, application security, or infrastructure security.
  • Strong hands-on experience with CI/CD tools (e.g., Jenkins, GitLab CI/CD, GitHub Actions).
  • Familiarity with containerization and orchestration technologies (Docker, Kubernetes).
  • Proficiency with scripting languages (Python, Bash, etc.) and infrastructure-as-code tools (Terraform, CloudFormation).
  • Experience conducting audits or assessments aligned to frameworks like SOC 2, NIST, ISO 27001, or CIS Benchmarks.
  • In-depth knowledge of cloud security (AWS, Azure, or GCP) and security automation practices.
  • Understanding of vulnerability management, secure coding practices, and application threat modeling.

PREFERRED SKILLS

  • Industry certifications such as CISSP, CISA, OSCP, GIAC, or AWS/GCP Security Engineer.
  • Experience with security monitoring tools (e.g., Snyk, Aqua, Prisma Cloud, SonarQube, or similar).
  • Familiarity with enterprise risk management practices and GRC tools.
  • Strong analytical and communication skills, with the ability to document technical issues and collaborate across teams

3391

At Fortra, our compensation philosophy prioritizes fair market value and internal equity, aligning with your experience and specialized skill set.  

As a full-time, exempt employee at Fortra, you’ll enjoy a comprehensive benefits package that includes:  

  • Health, dental, and vision coverage as of hire 
  • Immediate enrollment in 401(k), HSA, and FSA plans 
  • Flexible PTO policy  
  • Tuition and personal enrichment reimbursement 
  • Option to enroll in ID Theft Protection Program   

Check out some of the of the other benefits we offer that are focused on your holistic well-being and our Diversity, Equity, and Inclusion program. 
 

Compensation

$105,000 - $135,000 USD

Visit our website to learn more about why employees choose to work for Fortra. Remember to connect with us on LinkedIn.

As an EEO/Affirmative Action Employer, all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, veteran or disability status.

Similar Jobs

Cadence - Lead Product Engineer - Innovus

Cadence

Seoul, South Korea (On-Site)
3 Months ago
CGS Carrers - Director of Global Compensation

CGS Carrers

United States (Remote)
1 Month ago
GoMotive - Workplace Experience Specialist

GoMotive

Lahore, Punjab, Pakistan (On-Site)
3 Months ago
Coherent corp. - Lead CMP Process Engineer

Coherent corp.

Easton, Pennsylvania, United States (On-Site)
3 Months ago
GIANTS Software - Tools Programmer

GIANTS Software

Zürich, Zurich, Switzerland (On-Site)
7 Months ago
Epic Games - Senior Mobile Platform Engineer

Epic Games

(On-Site)
7 Months ago
WebFX - Jr. MarTech Solutions Architect

WebFX

Harrisburg, Pennsylvania, United States (On-Site)
9 Months ago
Flexra Software - Member of Technical Staff, Site Reliability Engineer

Flexra Software

India (Remote)
3 Months ago
bytedance - Research Engineer Graduate (Vision AI Platform)

bytedance

Seattle, Washington, United States (On-Site)
3 Months ago
PayPal - Staff Infrastructure Software Engineer

PayPal

San Jose, California, United States (Hybrid)
2 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Take-Two Interactive - Information Security Operations Analyst

Take-Two Interactive

Las Vegas, Nevada, United States (On-Site)
3 Weeks ago
Sonar Source - Engineering Director

Sonar Source

Austin, Texas, United States (On-Site)
9 Months ago
big red button - Senior Mobile Data Analyst/Scientist

big red button

California, United States (Remote)
1 Month ago
Black Bery - QNX - Functional Safety Manager

Black Bery

Hyderabad, Telangana, India (On-Site)
2 Months ago
Games2win - Proofreader

Games2win

Mumbai, Maharashtra, India (On-Site)
3 Months ago
Qualcomm - Staff Engineer - Modem Systems

Qualcomm

San Diego, California, United States (On-Site)
2 Months ago
eBay - Java Backend Software Engineer

eBay

Toronto, Ontario, Canada (Hybrid)
2 Weeks ago
bytedance - Technical Program Manager, Security Engineering

bytedance

Singapore (On-Site)
3 Months ago
Social Discovery Ventures - Partner Account Manager (Chinese, English, Russian)

Social Discovery Ventures

Shanghai, China (Remote)
3 Weeks ago
Activision - Expert Level Designer

Activision

Warsaw, Masovian Voivodeship, Poland (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Jobs in United States

Warner Bros Discovery - Lead Designer, Narrative

Warner Bros Discovery

Salt Lake City, Utah, United States (Hybrid)
2 Months ago
valve software - Did we miss something?

valve software

Bellevue, Washington, United States (On-Site)
3 Months ago
Coda - Senior Software Engineering Manager

Coda

California, United States (Hybrid)
10 Months ago
Nintendo - Manager, Retail & Digital Strategy

Nintendo

Redmond, Washington, United States (Hybrid)
11 Months ago
Expedia - Software Development Engineer III - GraphQL Platform

Expedia

Austin, Texas, United States (On-Site)
1 Year ago
bytedance - Senior Software Engineer, Multi Cloud CDN - San Jose / Seattle / Boston

bytedance

Seattle, Washington, United States (On-Site)
7 Months ago
TVH - Order Filler

TVH

Elizabethtown, Pennsylvania, United States (On-Site)
2 Weeks ago
Rackspace Technology - Senior Data Architect - Big Data (AWS)

Rackspace Technology

Reston, Virginia, United States (Remote)
4 Months ago
Dave Ramsey - Product Designer 2

Dave Ramsey

Franklin, Tennessee, United States (On-Site)
2 Weeks ago
gitlab - Senior Analytics Engineer

gitlab

United States (Remote)
1 Month ago

Get notifed when new similar jobs are uploaded

Devops Jobs

binance - Senior DevOps Engineer (Kubernetes/ AWS/ Cloud-native)

binance

Taipei City, Taiwan (Remote)
4 Years ago
Fireworks AI - Software Engineer, Cloud Infrastructure

Fireworks AI

New York, United States (Hybrid)
3 Weeks ago
playrix  - Senior C++ Software Engineer (Build System)

playrix

Ireland (Remote)
8 Months ago
Salesforce - Account Solution Engineer - Mulesoft

Salesforce

Stockholm, Stockholm County, Sweden (Hybrid)
2 Weeks ago
miniclip - Cloud Infrastructure Engineer - Cloud Engineer II

miniclip

Lisbon, Lisbon, Portugal (On-Site)
2 Months ago
Discord - Staff Software Engineer - Desktop Platform

Discord

San Francisco, California, United States (On-Site)
2 Months ago
FICO - DevOps Engineering Enablement Engineer I

FICO

Bengaluru, Karnataka, India (Hybrid)
1 Year ago
extreme network - Staff Engineer – DevSecOps

extreme network

Ontario, Canada (Hybrid)
1 Month ago
USE Insider - Solution Architect

USE Insider

London, England, United Kingdom (Hybrid)
1 Month ago
USE Insider - Solution Architect - Taiwan

USE Insider

Taipei City, Taiwan (Hybrid)
9 Months ago

Get notifed when new similar jobs are uploaded

About The Company

At Fortra, we’re not just responding to cyber threats but anticipating them, planting obstacles, and breaking the attack chain. Fortra is a global cybersecurity company offering advanced offensive and defensive security solutions that deliver comprehensive protection across the cyber kill chain. Armed with a team of passionate experts driven by a shared purpose, we work together to empower our clients with the tools, intelligence, and expertise to safeguard what matters most. Fortra provides equal opportunity to all employees and applicants without regard to race, color, creed, religion, national origin, sex, sexual orientation, disability, genetic information, status as a covered veteran, age, marital status, membership or activity in a local human rights commission, status with regard to public assistance or any other protected characteristic.

Armenia (On-Site)

United States (On-Site)

United States (On-Site)

United States (On-Site)

Canada (On-Site)

Canada (On-Site)

Spain (On-Site)

United States (On-Site)

Colombia (On-Site)

View All Jobs

Get notified when new jobs are added by Fortra

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug