Jobs · skipthedrive

W

DevSecOps Lead - AI SDLC

Brightpath Technologies · Remote · Posted 17d ago

remoteleadEstimated 150k-305k USD
Apply on skipthedrive

About the role

Embed security into products and development workflows focusing on CI/CD and AI-driven software delivery.

Company Description Brightpath Technologies is a Montreal-based tech company, founded in 2006. We're builders at heart, we make simple products that actually matter to the people who use them. We have two product lines: The Brightpath Technologies Agent , our agentic HR platform that helps managers become better leaders, and ShareGate , the world's leading solution for Microsoft 365 migration and governance. More than 15,000 companies worldwide trust us to do exactly that. We're intentional about who joins us. If you're the kind of person who gets excited by a hard problem and wants to help shape what comes next, there's a place for you here. Your role As a DevSecOps Lead, you will be an operational individual contributor responsible for embedding security directly into our products, pipelines, and development workflows — with a focus on CI/CD, C#/.NET applications, Azure, and AI-driven software delivery. This is a deeply technical role where you will write code, build tooling, and work closely with developers to ensure security is a natural part of how we build and ship software. You will join the AI- SDLC team, which builds internal platforms and tooling that enable AI agents to operate across the development lifecycle. Your mission will be to ensure that security is integrated from the ground up across these tools, pipelines, and agentic workflows—enabling secure-by-default product development at scale. Your impact: Ensure security is embedded into CI/CD pipelines by delivering scalable, automated tooling and integrated security checks ( SAST , DAST , SCA , secret scanning); Enable secure-by-default development by designing and implementing automated, policy-driven security review workflows; Establish robust security guardrails within AI-assisted development and agent workflows to reduce risk while maintaining developer velocity; Reduce risk exposure by proactively identifying, assessing, and driving remediation of application security vulnerabilities; Strengthen application security posture by leading threat modeling and security assessments for new features and architectural changes; Improve detection and response capabilities through the development of automation, tooling, and streamlined vulnerability management processes; Elevate cloud and application security by partnering with Infrastructure SecOps to harden Azure environments and deployment practices; Enhance external security feedback loops by contributing to and scaling the bug bounty program and vulnerability intake processes. Your team You will join the AI- SDLC team, responsible for building the internal platform that enables AI agents to operate across the Brightpath Technologies and ShareGate development lifecycle. This includes developing agent pipelines, safety mechanisms, and developer-facing tooling. You will work closely with Infrastructure SecOps and partner with multiple product teams across the organization. This is a highly collaborative environment where your impact comes from building scalable solutions and making secure development the default for everyone. The next challenges awaiting the team revolve around scaling automated security practices across a growing portfolio of SaaS products, while deepening security integration within GitHub Actions and CI/CD pipelines. As AI-assisted and agentic development workflows continue to evolve, ensuring that security guardrails keep pace will be a key priority — alongside strengthening secure-by-default practices and building greater security awareness among developers across teams. What you'll bring 8+ years of experience in application security, DevSecOps, or security-focused software development; Strong software engineering background combined with deep security expertise; Deep understanding of web application security principles, OWASP Top 10, and CWE Top 25; Hands-on experience performing secure code reviews in C#; Experience building and maintaining security automation in CI/CD pipelines (GitHub Actions preferred); Solid understanding of Azure cloud services, infrastructure security, and deployment patterns; Experience integrating SAST , DAST , SCA , and secret scanning tools into development workflows; Proficiency in scripting (Python, Bash) for automation and tooling; Extensive hands-on experience with AI-assisted and agentic development workflows, with deep expertise in their security implications; recognized for major contributions in this space and driven by strong curiosity to push the boundaries of AI in the SDLC ; Familiarity with authentication protocols such as OIDC , SAML , and OAuth; Ability to clearly communicate security risks and trade-offs to both technical and non-technical stakeholders. What the job comes with Base salary: $150k to $200k. This range reflects our Canada-wide compensation scale. Final offers may be adjusted based on the candidate's region to align with local market conditions. Annual bonus program. LTIP program, share in Brightpath Technologies's long-term growth. RRSP + Family health insurance + telemedici

Read the full posting on skipthedrive

FAQ

Is the DevSecOps Lead - AI SDLC role at Brightpath Technologies remote?+

This DevSecOps Lead - AI SDLC position is listed as remote (Remote).

What is the salary for the DevSecOps Lead - AI SDLC role at Brightpath Technologies?+

The listing states Estimated 150k-305k USD.

What seniority level is this DevSecOps Lead - AI SDLC role?+

This is a lead level position.

How do I apply for the DevSecOps Lead - AI SDLC role at Brightpath Technologies?+

Use the "Apply on skipthedrive" button to open the original posting on skipthedrive, where you can submit your application directly to Brightpath Technologies.