DevSecOps Engineer

FundGuard is a global FinTech firm with offices in Boston, London, Tel Aviv, NYC and Toronto. Our primary customers are global custody banks, asset servicers and institutional asset managers. We are driving the future of AI-driven investment accounting SaaS!In fact, we were recently named to CB Insights List of the 100 Most Innovative Fintech Startups.

We are seeking an experiencedDevSecOps Engineerto join ourCloudOps team. This is adedicated rolewhere you will independently drive the implementation and upkeep of security practices across our development and operations processes. You'll collaborate closely with both the development and operations teams to ensure our cloud infrastructure and applications meet security requirements, while supporting efficient and reliable delivery.

KEY RESPONSIBILITIES:

Design, implement, and maintain security controls across our cloud environments using CNAPP, CSPM, and CWPP solutions

Lead security automation initiatives within CI/CD pipelines

Perform security assessments, vulnerability management, and remediation

Implement and manage cloud security tools and services

Develop and maintain security documentation and policies

Collaborate with development teams to integrate security early in the development lifecycle

Monitor and respond to security events and incidents

Stay current with emerging security threats and best practices

Requirements:

5+ years of experience in DevSecOps, Security Engineering, or similar roles

Strong experience with cloud security services in AWS and/or Azure environments

Working knowledge of Cloud Native Application Protection Platforms (CNAPP), Cloud Security Posture Management (CSPM), and Cloud Workload Protection Platforms (CWPP)

Hands-on experience with security tools such as Netskope, Orca/Wiz Security (CNAPP/CSPM), Crowdstrike (CWPP), Snyk, StackHawk DAST, and Knowbe4

Knowledge of container security and Kubernetes (MUST)

Experience implementing security in CI/CD pipelines, including SAST/SCA and DAST tools

Experience coordinating with third-party vendors for security audits and penetration testing, including managing remediation efforts and implementing findings

Proficiency in scripting languages (Python, Bash)

Understanding compliance frameworks (SOC1/2, ISO27001, GDPR, DORA, etc.)

Ability to work autonomously and to drive results

Strong analytical and problem-solving skills

Excellent communication and collaboration abilities

MUST be willing to work on-site in a hybrid model

Permanent U.S. work authorization REQUIRED (NO STEM-OPT)

Preferred Requirements:

Relevant security certifications (CISSP, CCSP, AWS/Azure Security certifications)

Experience with Infrastructure as Code (Terraform, CloudFormation)

Knowledge of Zero Trust architecture and implementation

Experience with SIEM tools and security monitoring

Background in application security and secure coding practices

About FundGuard:

FundGuard is the new generation investment accounting utility for asset managers and their service providers. Our cloud-native, AI-powered operating system and technology platform are transforming investment operations to enable reduced fees and the ability to offer new and innovative products, including crypto-asset services, while scaling for the future.

The company is led by an experienced team and has raised more than $57 million, backed by strategic partners including Citi and State Street Corp, venture firms Blumberg Capital, LionBird Ventures, and Team8 Capital among others.

We offer an exciting work opportunity where youll develop one of the more robust enterprise applications with deep financial engines, while using cutting edge cloud technologies.

Explore exciting career opportunities atfundguard.com/careersand follow us on LinkedIn:linkedin.com/fundguard.