About this role
DevSecOps Engineer at Rumble. Location: Washington, D.C. or Sarasota or Miami or New York City or Toronto or Longboat Key. Role: owning SSDLC, triaging vulnerabilities, hardening pipelines Requirements: Experienced in DevSecOps/application or product security, SSDLC design and operation, CI/CD hardening, SAST/DAST/SCA and container scanning, Python/Go/TypeScript code review, Docker/Kubernetes, Vault, and secure supply chain practices. Category: Engineering Seniority: Senior Level Tools: OpenStack, Ceph, Python, Go, TypeScript, GitHub Actions, GitLab CI, Jenkins, SAST, DAST, SCA, secret scanning, container scanning, SBOM, Sigstore/cosign, SLSA, Docker, Kubernetes, Vault, OAuth2, OpenID Connect, Terraform, Ansible, STRIDE, PASTA, Rocky Linux, Ubuntu, OWASP Top 10 Certifications: csslp, oscp, gwapt, cissp Commitment: Full Time Workplace: Onsite Languages: English