Senior DevSecOps Engineer

Stand Together is a philanthropic community that helps America’s boldest changemakers tackle the root causes of our country’s biggest problems, from education to the economy, broken communities, and toxic division, among dozens of other pressing issues. We provide our partners with access to resources including funding, thought leadership, a network of peers, and a playbook for applying proven principles to transform lives and society. 

Stand Together is seeking a highly skilled and security-minded Senior DevSecOps Engineer to help us design, build, and secure our cloud infrastructure and software delivery pipelines. You’ll partner with software, data, cyber, and cloud engineering teams to create a secure, scalable, and resilient platform that supports solutions to some of society’s biggest challenges. 

This role blends DevOps engineering excellence with security-first thinking—you’ll embed security controls directly into our CI/CD processes, drive compliance automation, and champion best practices for cloud security across all three of the major cloud providers. 

 At Stand Together, you’ll help build secure, scalable solutions that empower people and organizations to address society’s toughest problems. If you thrive at the intersection of cloud engineering and security innovation, we want to hear from you.

• Cloud & Infrastructure Security
• Establish and enforce cloud security standards, identity & access management (IAM) policies, and network security controls across AWS and Azure.
• Implement continuous compliance and security monitoring aligned to the AWS Well-Architected Framework and industry standards (CIS, NIST, ISO).
• Design automated guardrails for vulnerability management, patching, and secrets management.

• DevOps & Automation
• Architect and maintain CI/CD pipelines with built-in security testing (SAST/DAST), artifact signing, and policy enforcement.
• Develop Infrastructure-as-Code (IaC) using Terraform, CloudFormation, CDK, or Ansible to ensure repeatable, secure deployments.
• Build and maintain containerized environments (Docker, Kubernetes, ECS, Fargate) with hardened images and runtime security controls.

• Collaboration & Leadership
• Partner with software, data, and business teams to integrate security best practices into application design and deployment.
• Act as a trusted advisor on cloud security strategy, incident response, and disaster recovery.
• Coach engineers on secure coding, DevSecOps patterns, and operational excellence.
• Able to clearly communicate the value of new initiatives to secure cross-functional adoption
• Enthusiasm to contribute to Stand Together's vision and principled approach to solving problems, and a commitment to stewarding our culture, which champions values including transformation and innovation, entrepreneurialism, humility, and respect.

• Experience: 5+ years in Cloud/DevOps/Platform engineering with a strong focus on security and automation

• Cloud Expertise: Deep knowledge of AWS services (EC2, RDS, DynamoDB, Lambda, SQS/SNS, ECS/ECR, Security Hub, etc.) and equivelant technologies in Azure and GCP

• Security Knowledge:
• Strong understanding of IAM, network security, encryption (KMS), key rotation, and secrets management
• Experience with vulnerability scanning tools (e.g., Security Hub, Inspector, Aqua, Prisma, or similar) and compliance frameworks.
• Familiarity with container security and supply chain security practices.

• Automation & IaC: Proficiency with Terraform, Ansible, Cloud Development Kit (CDK), or similar
• Demonstrated proficiency in threat detection, log aggregation, and incident response using Splunk and alternative SIEM tools

• Programming & Scripting: Proficiency in Python or another high-level language for automation and custom tooling

• CI/CD & Monitoring: Experience with Jenkins, GitHub Actions, CodePipeline, or similar, plus observability tools (Prometheus, Grafana, ELK/EFK)

• OS & Networking: Strong Linux/Unix command-line skills and solid grasp of TCP/IP, DNS, VPNs, firewalls, and load balancing

• AWS Certified Solutions Architect, Security Specialty, or DevOps Engineer – Professional
• Experience with Zero Trust principles, cloud-native application security, or serverless security
• Background in incident response or security operations

• Competitive benefits: Enjoy a 6% 401(k) match with immediate vesting, flexible time off, comprehensive health and dental plans, plus wellness and mental health support through Peloton and Talkspace.
• A meaningful career: Join a passionate community of over 1,300 employees dedicated to improving lives and driving innovative solutions to complex social challenges.
• Commitment to growth: Thrive in a non-hierarchical environment that empowers employees to discover, develop and apply their unique talents.
• Competitive compensation: Our approach rewards the value you create through competitive salaries and bonus opportunities, allowing you to share in the success you help drive.

Our Values: Working at Stand Together is different from many other organizations. Our culture is deeply rooted in Principle Based Management® (PBM®), a framework guided by the principles that drive human progress, such as dignity, openness, and bottom-up empowerment. PBM® empowers our employees to be entrepreneurial, to innovate, and to continually drive transformation.   

We believe diversity fuels creativity, broadens knowledge, and helps drive success, and that is why we’re proud to be an Equal Opportunity Employer and strive to treat all employees and applicants with honesty, dignity, respect and sensitivity.