Senior DevSecOps Engineer

“I can be myself at work.”

You are more than a job title. We want you to feel comfortable doing great work and bringing your best, authentic self to everything you do. We value your talents, traditions, and uniqueness—and we’re committed to fostering a strong sense of belonging in a respectful workplace.  

We intentionally seek diverse perspectives, experiences, and backgrounds, investing in a culture designed to celebrate differences. We believe that belonging leads to better outcomes and a stronger community of associates united by our mission. At Capital, we live our core values every day: Integrity, Client Focus, Diverse Perspectives, Long-Term Thinking, and Community. 

 

“I can influence my income.” 

 

You want to feel recognized at work. Your performance will be reviewed annually, and your compensation will be designed to motivate and reward the value that you provide. You’ll receive a competitive salary, bonuses and benefits. Your company-funded retirement contribution will factor in salary and variable pay, including bonuses. 

 

“I can lead a full life.” 

 

You bring unique goals and interests to your job and your life. Whether you’re raising a family, you’re passionate about where you volunteer, or you want to explore different career paths, we’ll give you the resources that can set you up for success. 

• Enjoy generous time-away and health benefits from day one, with the opportunity for flexible work options 

• Receive 2-for-1 matching gifts for your charitable contributions and the opportunity to secure annual grants for the organizations you love 

• Access on-demand professional development resources that allow you to hone existing skills and learn new ones 

“I can succeed as a Senior DevSecOps Engineer at Capital Group.”

As a Senior DevSecOps Engineer within the Application Security team, you’ll support, secure, manage and deploy solutions that secure the software delivery lifecycle for enterprise applications. This is a highly technical role, so you will need a strong understanding of automation, CI/CD infrastructure, software development, and cloud services. Knowledge of information security and application security tools is highly desirable.

The DevSecOps engineer supports the security of continuous integration and continuous deployment (CI/CD) initiatives and is an integrated team member working with software developers, system engineers, cybersecurity engineers and systems administrators. The role is security-focused and helps CI/CD pipelines deliver secure software in a scalable manner while showing developer empathy and engineering excellence such as obsession with security tool output quality, false positive removal, using data / metrics to improve tools that integrate into the CI/CD pipeline. This role is hybrid (in-office 3 days/week) in New York NY.

Responsibilities:

• Simplify automation that applies security inter-workings with CI/CD pipelines.
• Work to consistently learn and share advanced skills and practices that promote team excellence.
• Build relationships with developers, stakeholders and scrum master’s to incorporate security principles into engineering design and deployments.
• Supervise testing and validation in application security controls across projects.
• Oversee implementation of defensive practices and countermeasures across infrastructure and applications.
• Draft and uphold CI/CD security strategy and practices in tandem with other technical team leads.
• Serve as a point of contact for security-based escalations and remain tightly involved through resolution.
• Build services and tools to enable developers and engineers to easily use security components produced by Application Security team members.
• Support the ability to “shift left” and incorporate security early on and throughout the development lifecycle.
• Communicate vulnerability results in a manner understood by technical and non-technical business units based on risk tolerance and threat to the business, and gain support through influential messaging.
• Leverage Vulnerability database sources to understand the weakness, probability and remediation options supplied by vendors as well as workarounds. 
• Join forces and provision security principles in architecture, infrastructure and code.
• Regularly research and learn new tactics, techniques and procedures (TTPs) in public and closed forums, and work with colleagues to assess risk and implement/validate controls as necessary through the CI/CD pipeline.
• Enrich DevOps architecture with security standards and best practices.
• Partner with teams to define key performance indicators (KPIs) and metrics across business units.

“I am the person Capital Group is looking for”

• Bachelor’s degree in Computer Science or related field and/or at least 7+ years’ experience in information technology, information security administration or security operations.
• Experience with agile workflows, including Scrum and Kanban.
• Hands-on experience of containers (e.g., Docker) and container orchestration (e.g., Docker Swarm, Kubernetes).
• Understanding DevSecOps tooling, including Terraform, Ansible, and CI/CD Pipelines.
• Experience with operations and security across Amazon Web Services (AWS).
• Ability to obtain and maintain technical team and business support to influence a collaborative effort to reduce attack surface while performing rapid, continuous implementation.
• Proficient in designing, building, and deploying complex engineering solutions
• Expert Programming knowledge in Python. Other Languages a bonus.
• Interested in Agentic software development, including developing agentic Skills to accelerate feature requests and improve the quality of solutions delivered.
• Excellence in communicating business risk and remediation requirements from assessments.

“I can apply in less than 4 minutes.”  

  

You’ve reviewed this job posting and you’re ready to start the candidate journey with us. Apply now to move to the next step in our recruiting process. If this role isn’t what you’re looking for, check out our other opportunities and join our talent community.  

  

“I can learn more about Capital Group.”  

 

At Capital Group, the success of the people who invest with us depends on the people in whom we invest. That’s why we offer a culture, compensation and opportunities that empower our associates to build successful and prosperous careers. Through nine decades, our goal has been to improve people’s lives through successful investing. We know that our history is a testament to the strength of the people we hire. More than 9,000 associates in 30+ offices around the world help our clients and each other grow and thrive every day. Find us on LinkedIn, Instagram, YouTube and Glassdoor.‎ 

‎ 

‎ 

‎ 

‎ 

New York Base Salary Range: $168,924-$270,278

‎ 

‎ 

‎ 

‎

‎ 

‎ 

‎ 

‎ 

‎ 

 ‎ 

 ‎

 ‎

In addition to a highly competitive base salary, per plan guidelines, restrictions and vesting requirements, you also will be eligible for an individual annual performance bonus, plus Capital’s annual profitability bonus plus a retirement plan where Capital contributes 15% of your eligible earnings.

You can learn more about our compensation and benefits here.

* Temporary positions in the United States are excluded from the above mentioned compensation and benefit plans.

We are an equal opportunity employer, which means we comply with all federal, state and local laws that prohibit discrimination when making all decisions about employment. As equal opportunity employers, our policies prohibit unlawful discrimination on the basis of race, religion, color, national origin, ancestry, sex (including gender and gender identity), pregnancy, childbirth and related medical conditions, age, physical or mental disability, medical condition, genetic information, marital status, sexual orientation, citizenship status, AIDS/HIV status, political activities or affiliations, military or veteran status, status as a victim of domestic violence, assault or stalking or any other characteristic protected by federal, state or local law.