DevSecOps Engineer with Visa Sponsorship

About the Company

IBM is a globally integrated enterprise, operating in over 170 countries. We bring to our clients a fresh perspective on the most difficult business and technology challenges. With our diverse talent, innovative technologies, and a commitment to responsible leadership, we help shape the future of technology and make a tangible impact on the world. Join IBM to be part of a team that’s building a smarter planet.

Job Description

We are seeking a highly skilled and experienced DevSecOps Engineer to join our dynamic team in Austin, Texas. In this role, you will be instrumental in integrating security best practices into our continuous integration and continuous deployment (CI/CD) pipelines, automating security controls, and fostering a security-first culture within our development and operations teams. This position offers visa sponsorship for qualified international candidates, demonstrating IBM’s commitment to attracting top global talent.

Key Responsibilities

• Design, implement, and maintain secure CI/CD pipelines across various cloud environments.
• Automate security testing (SAST, DAST, SCA, IAST) and vulnerability management within the software development lifecycle.
• Monitor, analyze, and enhance the security posture of cloud-native applications and infrastructure.
• Collaborate closely with development, operations, and security teams to identify, prioritize, and remediate security vulnerabilities.
• Develop and enforce robust security policies, standards, and procedures across the entire SDLC.
• Provide expert guidance and mentorship on secure coding practices, threat modeling, and security architecture.
• Stay abreast of emerging security threats, industry best practices, new technologies, and regulatory requirements.
• Participate in incident response activities and post-mortems as needed.

Required Skills

• 5+ years of demonstrable experience in DevSecOps, DevOps, or Software Engineering with a strong security focus.
• Proficiency with CI/CD tools such as Jenkins, GitLab CI, Azure DevOps, or similar platforms.
• Strong hands-on experience with major cloud platforms (e.g., AWS, Azure, GCP), including security configurations.
• Extensive experience with containerization and orchestration technologies (Docker, Kubernetes).
• Familiarity with various security tools and concepts (e.g., SAST, DAST, SCA, IAST, WAF, SIEM).
• Solid understanding of networking protocols, operating systems (Linux), and web application security principles (OWASP Top 10).
• Strong scripting and automation proficiency using languages like Python, Bash, or Go.
• Excellent communication, interpersonal, and collaborative skills to work effectively across diverse teams.

Preferred Qualifications

• Relevant industry certifications such as AWS Certified Security, Certified Kubernetes Security Specialist (CKS), OSCP, CISSP, or equivalent.
• Experience with Infrastructure as Code (IaC) tools like Terraform, Ansible, or CloudFormation.
• Knowledge of compliance frameworks and standards (e.g., NIST, ISO 27001, SOC 2, GDPR).
• Previous experience working in a large-scale enterprise environment with complex security requirements.
• Bachelor's or Master's degree in Computer Science, Information Security, or a closely related technical field.

Perks & Benefits

• Comprehensive health, dental, and vision insurance plans.
• 401(k) retirement plan with generous company match.
• Generous paid time off, including vacation, sick leave, and holidays.
• Extensive professional development and continuous learning opportunities.
• Tuition reimbursement program for further education.
• Employee assistance program and wellness initiatives.
• On-site fitness centers and recreational facilities (at select campuses).
• Visa sponsorship and dedicated relocation assistance for eligible international candidates.
• Flexible hybrid work model promoting work-life balance.

Apply Now