Senior DevSecOps Engineer

About The Position

Requirements

• Minimum of 10 years of experience securing Cloud systems (AWS), specifically within or very near government-level security environments (FedRAMP/GovRAMP/DoD).
• Deep, hands-on expertise in SOC2 Type 2 compliance. Familiarity with GovRAMP and FedRAMP frameworks is essential, as you will be responsible for translating these high-level requirements into technical reality.
• Expertise in implementing and managing SIEM (Security Information and Event Management) and SOAR platforms (e.g., Splunk, Datadog Security, AlienVault, or AWS Security Hub). You should be adept at configuring complex alerting, log aggregation, and real-time threat detection to ensure constant visibility.
• Expert-level proficiency in hardening AWS environments (IAM, VPC, GuardDuty, KMS, Security Hub, and AWS Config).
• Deep understanding of securing Node-based systems and modern web applications.
• Extensive experience in database security, encryption at rest/transit, and data masking.
• Deep knowledge of securing CI/CD pipelines and automating security gates within the development lifecycle.
• Proven ability to create and maintain stringent, audit-ready documentation. You don't just secure the system; you prove it through impeccable record-keeping and process design.
• Experience managing and remediating findings from external penetration tests and automated vulnerability scanning (SAST/DAST).
• Exceptional communication skills, with the ability to influence DevOps and Engineering teams to adopt a "Security-First" culture.

Responsibilities

• System Hardening & Extension: Move beyond standard configurations to implement a true "Zero Trust" architecture. You will harden our infrastructure baselines and extend our security capabilities to anticipate emerging threats before they manifest, ensuring our systems are robust from the ground up.
• Compliance Integration: Transform compliance from a yearly audit into a continuous, architectural process. You will align our SOC2, GovRAMP, and FedRAMP efforts so that our security posture is a lived reality, fully integrated into our deployment pipelines and daily operations.
• Trust as a Competitive Advantage: Position ClassWallet’s security as a market differentiator. By maintaining an impeccable security environment, you enable the business to confidently pursue the most sensitive government contracts, knowing our technology is the gold standard for fund management.

Benefits

• We offer an excellent salary and benefits commensurate with experience.
• ClassWallet is a positive, family-oriented team environment. Our focus is on encouragement, positive reinforcement, and gratitude. We work hard and are highly motivated to win but with a healthy perspective on life.