DevSecOps Engineer II

DevSecOps Engineer II

(Remote Candidates will be considered)

Our Story and Our Purpose

We are building a specialized financial institution addressing the growing demand for digital asset services. Our primary business will focus on digital asset custody, providing secure, efficient custodial and fiduciary services for a variety of digital assets. We have applied for a national bank charter and will receive conditional approval in the near future.

You will work with foundational systems and processes to help shape our operating model and influence how a new category of financial infrastructure comes to market. We are looking for builders who handle complexity with confidence and tackle ambitious opportunities while keeping pace with this rapidly evolving industry. Let’s Build This Together.

Our Principles

Greatness is a mindset, not an accomplishment. Mediocrity is unacceptable. Excellence is contagious. We hire people because we believe in their greatness. Now is the time to prove us right.

Responsibility comes with the territory. Everyone is an owner, which means we share a common vision and mutual accountability. We act in line with our strategic objectives and the trust our customers place in us. We believe there is no such thing as "not my problem." Taking this level of ownership not only drives our collective success but also offers the potential for significant reward.

Innovation and adaptation are in our DNA. We are in a period of the most dramatic and rapid period of technological change in the history of humankind. Those that stay ahead will thrive, those that don't, won't. We innovate intelligently and thrive on overcoming challenges, to get (at least) a little better every day and ensure our continued growth and success.

Team first. We are reliable teammates working together toward extraordinary success through honesty and accountability. We believe collaboration knows no hierarchy, and we focus on what matters. We work toward consensus, but when necessary, we disagree and commit. We know that winners win.

Job Overview

As a DevSecOps Engineer II, you will be a key liaison between application development teams and the DevSecOps function, ensuring alignment, reducing friction, and accelerating secure delivery. You will act as a trusted partner to developers, guiding them through security requirements while advocating for their needs within the infrastructure and security strategy.

You will design and implement developer-friendly automation, secure-by-default patterns, and re-usable CI/CD components that enable app teams to innovate rapidly in lower environments. Your role is to embed security early and reduce rework through proactive collaboration, tool integration, and clear guidance.

Objectives

Serve as the conduit between DevSecOps and application development teams
Contribute to the hardening and modernization of our GitHub ecosystem consolidating organizations, implementing guardrails and RBAC best practices, and establishing policy-as-code governance at scale.
Assess and evolve the current CI/CD posture — modernizing pipelines, evaluating tooling, and driving toward fully automated secure delivery workflows.
Assist with Secure Software Development Framework (SSDF) practices to embed “secure-by-design” principles throughout the SDLC — ensuring supply chain integrity from commit to production.
Act as an SRE for new application infrastructure — building out observability, proactive reliability patterns, performance scaling strategy, and operational readiness.
Develop and integrate ITSM operational workflows — introducing automation and process maturity where needed to align engineering velocity with auditable controls and resilience.
Promote a culture of security across the organization.
Be able to wear many hats, performing critical required duties as necessary, especially as the team is being developed
Occasional travel to other Protego, customer, and vendor offices

What you bring to our company

3–5+ years of experience in DevSecOps, SRE, or Cloud Security Engineering roles operating in production-critical environments
Excellent communicator and proactive collaborator — able to influence cross-functional teams and advocate for secure-by-design principles
Hands-on expertise with leading cloud providers (IAM, networking, security services, automation, zero-trust / least privilege, cost awareness)
Practical experience operating and securing Kubernetes — including IaC-driven provisioning, policy enforcement, and observability
Strong command of SCM administration — including RBAC, repo automation, organization policy enforcement, and secure SDLC controls
Proficiency with Infrastructure as Code (Terraform, CDK, or equivalent) and configuration automation (e.g., Helm, ArgoCD, Crossplane, etc. a plus)
Familiarity with ITSM-aligned engineering operations — enabling traceability, incident management, and operational readiness at scale
Advanced understanding of cloud security, identity, secrets management, and automated governance — ideally aligned to frameworks like CSF 2.0, ISO, or SOC2
Previous experience in fintech, blockchain, digital assets, or other highly regulated / high-trust environments
Demonstrated experience owning and maturing CI/CD pipelines, with strong emphasis on supply-chain integrity, infrastructure automation, and SSDF-aligned delivery
Strong self-starter with strong analytical and problem-solving skills

We promote diversity of thought, culture, background, and experience. We are an equal opportunity employer, and employment at our company is based solely on one's merit and qualifications directly related to professional competence. We do not discriminate based on race, creed, color, ancestry, religion, gender, sexual orientation, gender identity, national origin, age, disability, genetic information, military or veteran status, or any other characteristics protected by law.

Featured benefits

Employer-provided: Medical, Dental, and Vision insurance, 401(k), life and disability insurance.