Staff DevSecOps Engineer

At FourKites we have the opportunity to tackle complex challenges with real-world impacts. Whether it’s medical supplies from Cardinal Health or groceries for Walmart, the FourKites platform helps customers operate global supply chains that are efficient, agile and sustainable. Join a team of curious problem solvers that celebrates differences, leads with empathy and values inclusivity.

We are seeking an experienced DevSecOps Engineer with a strong background in cloud security, infrastructure management, and secure software development. The ideal candidate will have extensive hands-on expertise across major cloud platforms, containerization technologies, and security frameworks. You will be responsible for architecting, implementing, and maintaining secure cloud environments while ensuring that security is seamlessly integrated throughout the development lifecycle.

What you’ll be doing: 

• Architect and secure highly available, scalable, and fault-tolerant systems across AWS, GCP, and Azure environments
• Design and implement robust Layer 3/Layer 4 firewall solutions and network security controls
• Implement and manage intrusion detection systems (IDS) and intrusion prevention systems (IPS)
• Design and deploy container security strategies for Docker and Kubernetes environments
• Manage cloud security services including WAF, service mesh, and threat modeling
• Ensure 99.99% uptime while maintaining strong security posture

• Leverage automation technologies (Ansible, Chef, Puppet, Jenkins) to manage infrastructure and deployment pipelines
• Develop, deploy, and maintain infrastructure-as-code solutions using Terraform, CloudFormation, and cloud-specific CLIs
• Build and maintain secure CI/CD pipelines with integrated security testing
• Identify and implement open-source security tools as alternatives to commercial solutions without compromising reliability or performance

• Ensure compliance with PCI-DSS requirements and prepare systems for PCI audits
• Participate in security assessments, including threat modeling and vulnerability scanning
• Document security controls and maintain evidence for compliance requirements
• Create and maintain security documentation and training materials

• Implement API security best practices including authentication, authorization, and rate limiting
• Troubleshoot and resolve SSL/TLS issues across various environments
• Perform security assessments of applications and APIs
• Develop secure coding guidelines and review processes

• Lead incident response activities for security events
• Configure and maintain security monitoring solutions
• Develop automated security responses to common threats
• Conduct post-incident analysis and implement improvements

Who you are:

• 7+ years of experience in DevOps, Security Engineering, or similar technical roles
• Strong hands-on experience with major cloud platforms (AWS, GCP, Azure)
• Deep understanding of network security concepts including Layer 3/Layer 4 firewalls
• Experience with intrusion detection systems (IDS) and intrusion prevention systems (IPS)
• Expertise in container security and Kubernetes security controls (CKA/CKAD/CKS preferred)
• Experience supporting systems requiring 99.99% uptime or higher
• Proven ability to implement open-source security tools as alternatives to commercial solutions
• Experience with PCI-DSS compliance requirements and audit processes
• Strong knowledge of API security implementation, including rate limiting and authentication
• Proficiency in troubleshooting SSL/TLS issues and certificate management
• Experience with infrastructure as code (Terraform, CloudFormation, etc.)
• Proficiency in at least one scripting/programming language (Python, Bash, Java, C#, etc.)
• Strong analytical, troubleshooting, and problem-solving skills
• Excellent communication skills to bridge technical and non-technical teams
• Proactive approach to identifying and mitigating security risks
• Ability to work in a fast-paced environment and manage multiple tasks concurrently
• Passion for continuous learning and staying current with security trends

• Security certifications (CISSP, CEH, AWS Security, PCI QSA)
• Cloud platform certifications (AWS Certified Solutions Architect, Azure Security Engineer, GCP Professional Cloud Security Engineer)
• Experience with other compliance frameworks (SOC2, ISO27001, NIST)
• Experience with security monitoring and SIEM tools
• Knowledge of zero-trust architecture principles
• Experience mentoring junior team members

Who we are:

FourKites® is the #1 supply chain visibility platform in the world, extending visibility beyond transportation into yards, warehouses, stores and beyond. Tracking more than 2.5 million shipments daily across road, rail, ocean, air, parcel and courier, and reaching over 185 countries, FourKites combines real-time data and powerful machine learning to help companies digitize their end-to-end supply chains. More than 1,000 of the world’s most recognized brands — including 9 of the top-10 CPG and 18 of the top-20 food and beverage companies — trust FourKites to transform their business and create more agile, efficient and sustainable supply chains.  

Benefits

• Medical benefits start on the first day of employment
• 36 PTO days (Sick, Casual and Earned), five recharge days, two volunteer days 
• Home Office setups and Technology reimbursement
• Lifestyle & Family benefits 
• Ongoing learning & development opportunities (Professional development program, Toast Master club, etc.)