Jobs · himalayas
Senior DevSecOps Engineer
Halcyon Labs · United States · Posted 12d ago
Available in 3 locations
North America · remote Apply → Remote · remote Apply → United States · remote Apply →About the role
Drive security and reliability of cloud infrastructure and SaaS products at Halcyon Labs.
The exciting world of scientific research is fueled by people with a passion for solving complex problems. At Halcyon Labs , we are committed to our customers’ success by empowering organizations to conduct globally connected research that advances their impact on science, discovery and society. We build on that commitment with proven, integrated and easy-to-use technology that delivers exceptional value, and world class service and support that accelerates outcomes. But we are more than just an empowering platform powered by advanced technologies. We are a collaboration of exceptional, highly skilled people with multi-disciplinary expertise, and are building our team to support our ambitious growth plans. Halcyon Labs ’s foundational strength comes from our customer and employee focused values and commitment to industry-leading solutions. It’s an exciting time to become a key member of our growing team. As a Senior DevSecOps Engineer, you will be a key technical leader driving the security, reliability, and integrity of our cloud-based infrastructure and SaaS products. This role embeds security throughout the software delivery lifecycle — shifting vulnerability detection left into the pipeline while operationalizing continuous monitoring and remediation in production. You will own our application and cloud vulnerability management program, leveraging tools like Snyk, SonarQube, and AWS Inspector to find, prioritize, and drive remediation of risk across a multi-product, multi-environment AWS platform. This is an AI-native role. We expect you to work fluently with AI engineering tools — Claude Code, GitHub Copilot, Atlassian Rovo, and similar — to accelerate triage, remediation, automation, and documentation, and to help the team build AI-augmented workflows into how we detect and fix risk. We're looking for someone who treats these tools as a force multiplier and applies sound judgment about where AI fits and where human review is non-negotiable, especially in a security context. This role combines deep technical expertise with a passion for mentoring. You will pair hands-on engineering with guiding colleagues in secure development and operational practices, and contribute to the overall maturity of our DevSecOps capability — with a strong emphasis on automation using Terraform and Bitbucket Pipelines. Responsibilities Vulnerability Management and Remediation Assist in the end-to-end vulnerability management lifecycle: discovery, triage, prioritization, remediation tracking, and reporting across applications, containers, and cloud infrastructure. Administer and tune Snyk (SCA, container, and IaC scanning), SonarQube (SAST and code quality gates), and AWS Inspector (EC2, ECR, and Lambda vulnerability scanning) to maximize signal and reduce false positives. Aggregate and normalize findings across scanners into a single prioritized backlog, using severity, exploitability, and asset criticality to drive risk-based remediation. Partner with product engineering teams to remediate findings, providing concrete guidance and tracking SLAs to closure rather than just reporting on counts. Establish and enforce policy-as-code and quality/security gates in CI so vulnerabilities are caught before merge and deployment. Drive container and base-image hygiene across EKS workloads, including image scanning, patching cadence, and remediation of vulnerable dependencies. Secure Pipelines and Automation Design, build, and maintain secure CI/CD pipelines using Bitbucket Pipelines , integrating Snyk, SonarQube, and other security scanning natively into the build and deploy flow. Build and maintain secure, scalable infrastructure using Terraform , applying IaC scanning and guardrails to prevent misconfiguration. Automate vulnerability discovery, ticket creation, and remediation workflows (e.g., auto-filing Jira tickets from scanner findings) to reduce toil and accelerate response. Develop and maintain automation tools and scripts (Python, Bash) to integrate security tooling, enrich findings, and report on posture. Manage cloud security posture across the AWS estate (managed through DuploCloud ), including IAM, Security Groups, encryption, and configuration baselines. AI-Augmented Engineering Work AI-native: use tools like Claude Code , GitHub Copilot , and Atlassian Rovo to accelerate code, automation, triage, and documentation in day-to-day engineering. Build AI into security and remediation workflows — for example, using AI to summarize and enrich scanner findings, draft remediation guidance, generate and review Terraform and pipeline changes, and auto-populate Jira tickets from vulnerability data. Apply sound judgment about where AI fits and where human review is mandatory, treating all AI output in a security context as needing verification before it reaches production or a security decision. Help establish and share team standards for responsible, effective use of AI engineering tools, and mentor colleagues on getting leverage from them sa
Read the full posting on himalayas →
FAQ
Is the Senior DevSecOps Engineer role at Halcyon Labs remote?+
This Senior DevSecOps Engineer position is listed as remote (United States).
What is the salary for the Senior DevSecOps Engineer role at Halcyon Labs?+
The listing states Estimated 93k-215k USD.
What seniority level is this Senior DevSecOps Engineer role?+
This is a senior level position.
How do I apply for the Senior DevSecOps Engineer role at Halcyon Labs?+
Use the "Apply on himalayas" button to open the original posting on himalayas, where you can submit your application directly to Halcyon Labs.