Staff DevSecOps Engineer

At FourKites we have the opportunity to tackle complex challenges with real-world impacts. Whether it’s medical supplies from Cardinal Health or groceries for Walmart, the FourKites platform helps customers operate global supply chains that are efficient, agile and sustainable.

Join a team of curious problem solvers that celebrates differences, leads with empathy and values inclusivity. 

We are seeking an experienced DevSecOps Engineer with a strong background in cloud security, infrastructure management, and secure software development. The ideal candidate will have extensive hands-on expertise across major cloud platforms, containerization technologies, and security frameworks. You will be responsible for architecting, implementing, and maintaining secure cloud environments while ensuring that security is seamlessly integrated throughout the development lifecycle.

What you’ll be doing: 

• Architect and secure highly available, scalable, and fault-tolerant systems across AWS, GCP, and Azure environments
• Design and implement robust Layer 3/Layer 4 firewall solutions and network security controls
• Implement and manage intrusion detection systems (IDS) and intrusion prevention systems (IPS)
• Design and deploy container security strategies for Docker and Kubernetes environments
• Manage cloud security services including WAF, service mesh, and threat modeling
• Ensure 99.99% uptime while maintaining strong security posture

• Leverage automation technologies (Ansible, Chef, Puppet, Jenkins) to manage infrastructure and deployment pipelines
• Develop, deploy, and maintain infrastructure-as-code solutions using Terraform, CloudFormation, and cloud-specific CLIs
• Build and maintain secure CI/CD pipelines with integrated security testing
• Identify and implement open-source security tools as alternatives to commercial solutions without compromising reliability or performance

• Ensure compliance with PCI-DSS requirements and prepare systems for PCI audits
• Participate in security assessments, including threat modeling and vulnerability scanning
• Document security controls and maintain evidence for compliance requirements
• Create and maintain security documentation and training materials

• Implement API security best practices including authentication, authorization, and rate limiting
• Troubleshoot and resolve SSL/TLS issues across various environments
• Perform security assessments of applications and APIs
• Develop secure coding guidelines and review processes

• Lead incident response activities for security events
• Configure and maintain security monitoring solutions
• Develop automated security responses to common threats
• Conduct post-incident analysis and implement improvements

Who you are:

• 8+ years of experience in DevOps, Security Engineering, or similar technical roles
• Strong hands-on experience with major cloud platforms (AWS, GCP, Azure)
• Deep understanding of network security concepts including Layer 3/Layer 4 firewalls
• Experience with intrusion detection systems (IDS) and intrusion prevention systems (IPS)
• Expertise in container security and Kubernetes security controls (CKA/CKAD/CKS preferred)
• Experience supporting systems requiring 99.99% uptime or higher
• Proven ability to implement open-source security tools as alternatives to commercial solutions
• Experience with PCI-DSS compliance requirements and audit processes
• Strong knowledge of API security implementation, including rate limiting and authentication
• Proficiency in troubleshooting SSL/TLS issues and certificate management
• Experience with infrastructure as code (Terraform, CloudFormation, etc.)
• Proficiency in at least one scripting/programming language (Python, Bash, Java, C#, etc.)
• Strong analytical, troubleshooting, and problem-solving skills
• Excellent communication skills to bridge technical and non-technical teams
• Proactive approach to identifying and mitigating security risks
• Ability to work in a fast-paced environment and manage multiple tasks concurrently
• Passion for continuous learning and staying current with security trends

• Security certifications (CISSP, CEH, AWS Security, PCI QSA)
• Cloud platform certifications (AWS Certified Solutions Architect, Azure Security Engineer, GCP Professional Cloud Security Engineer)
• Experience with other compliance frameworks (SOC2, ISO27001, NIST)
• Experience with security monitoring and SIEM tools
• Knowledge of zero-trust architecture principles
• Experience mentoring junior team members

Who we are:
FourKites®, the leader in AI-driven supply chain transformation for global enterprises and pioneer of advanced real-time visibility, turns supply chain data into automated action. FourKites’ Intelligent Control Tower™ breaks down enterprise silos by creating a real-time digital twin of orders, shipments, inventory and assets. This comprehensive view, combined with AI-powered digital workers, enables companies to prevent disruptions, automate routine tasks, and optimize performance across their supply chain. FourKites processes over 3.2 million supply chain events daily — from purchase orders to final delivery — helping 1,600+ global brands prevent disruptions, make faster decisions and move from reactive tracking to proactive supply chain orchestration.
Working at FourKites
We provide competitive compensation with stock options, outstanding benefits and a collaborative culture for all employees around the globe, including:
5 global recharge days, in addition to standard holidays, and a hybrid, flexible approach to work.
Parental leave for all parents, an annual wellness stipend and volunteer days also provide you with time and resources for self care and to care for others.
Opportunities throughout the year to learn and celebrate diversity.
Access to leading AI tools and foundation models, with the freedom to experiment and find creative ways to be more effective in your role
And we're always listening for new ways to support everyone in and out of the office.