
DevSecOps Engineer
3 weeks ago
About us:
Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians. Our platform is designed to foster healthier food choices, drive lasting behavior change, and deliver long-term health outcomes. Through our highly personalized, digital platform, we guide our 2.2 million membersincluding those in employer-sponsored health plans, regional and national Medicaid managed care organizations, Medicare Advantage plans, and commercial insurerson a tailored journey to eating well while saving time and money.
Foodsmart seamlessly integrates dietary assessments and nutrition counseling with online food ordering and cost-effective meal planning for the entire family, optimizing ingredients both at home and on the go. We partner with national and regional retailers across the U.S., many of whom accept SNAP/EBT, making healthier food more accessible. Additionally, we assist members with SNAP enrollment and management, providing tangible access to nutritious food.In 2024, Foodsmart secured a $200 million investment from TPGs Rise Fund, which supports entrepreneurs dedicated to achieving the United Nations Sustainable Development Goals. This investment will help us expand our reach, particularly to low-income workers who are disproportionately affected by diet-related diseases.
At Foodsmart, our mission is to make nutritious food accessible and affordable for everyone, regardless of economic status. We are committed to a set of core values that shape our culture and work environment:
Measured: We make data-driven, truth-seeking decisions.
Impactful: We are fueled by achieving our mission and vision.
Collaborative: We help each other be better and create a positive environment.
Hungry: We maintain a healthy growth mindset, seeking to overcome challenges with courage.
Joyful: We take joy in each other, our work, and the privilege of doing this work.
Whether you&aposre a dietitian, a commercial leader, or a technologist, working at Foodsmart means being part of a team that is passionate, supportive, and driven by a shared purpose. Join us in transforming the way people access and enjoy healthy food.
About the role:
We are seeking a DevSecOps Engineer who will work at the intersection of security, DevOps, and development to ensure security is embedded throughout our SDLC. This role requires deep technical expertise in secure code review, static and dynamic application security testing (SAST/DAST), and infrastructure governance, especially in the segregation of environments, separation of duties, and branch protection in source control systems.
You will:
Code & Application Security
- Conduct manual and automated code reviews to identify security vulnerabilities (e.g., XSS, SQLi, logic flaws).
- Define and implement SAST and DAST pipelines using tools such as SNYK, Checkmarx, Fortify, OWASP ZAP, or Burp Suite.
- Collaborate with development teams to remediate vulnerabilities and educate on secure coding standards (e.g., OWASP Top 10).
DevSecOps & CI/CD Pipeline Security
- Integrate security controls into CI/CD pipelines using tools like GitHub Actions, Jenkins, and GitLab CI.
- Define and enforce branch protection rules, code signing, and commit validation policies (e.g., mandatory code reviews, signed commits).
- Work closely with DevOps to ensure security-as-code is implemented across build, test, and deployment stages.
Infrastructure & Environment Segregation
- Ensure proper segregation between development, staging, and production environments, following least privilege principles.
- Collaborate with infra and cloud teams to enforce network and access segregation (e.g., VPC segmentation, IAM policies).
Governance & Policy Enforcement
- Define and monitor separation of duties policies between developers, testers, and deployers.
- Create security baselines and compliance checks (e.g., CIS Benchmarks, SOC 2/ISO 27001 readiness).
- Set up auditing and alerting for anomalous activities in source control and deployment platforms.
Tooling & Automation
- Deploy and maintain security tools (e.g., GitGuardian, Aqua, Prisma Cloud) to detect hard coded secrets, policy violations, and misconfigurations.
- Automate remediation workflows where possible (e.g., auto-patching vulnerable dependencies).
You have:
- 35+ years in DevSecOps, AppSec, or a combined development and security engineering role.
- Strong hands-on experience in secure coding, application security testing, and source code analysis.
- Solid knowledge of CI/CD pipelines, version control (especially GitHub/GitLab), and branch control strategies.
- Familiarity with cloud platforms (AWS, Azure, GCP) and security practices for each.
- In-depth understanding of network security, access controls, and zero trust architecture.
- Practical knowledge of regulatory or compliance frameworks (e.g., ISO 27001, SOC 2, NIST).
Preferred Qualifications
- Experience working with Infrastructure as Code (IaC) tools (e.g., Terraform, CloudFormation) with embedded security checks.
- Familiarity with container security (Docker, Kubernetes, image scanning).
- Certifications: OSCP, CSSLP, CEH, GSEC, or AWS Security Specialty.
- Contributions to open-source security tools or projects is a plus.
Key KPIs / Metrics of Success
- Time-to-remediate for identified vulnerabilities.
- Percentage of pipelines with integrated SAST/DAST.
- Number of policy violations prevented via branch rules and access controls.
- Coverage of secure coding training among developers.
-
Devsecops Engineer
3 days ago
Hyderabad, Telangana, India World Wide Technology Full time ₹ 8,00,000 - ₹ 24,00,000 per yearWorld Wide Technology Holding Co, LLC (WWT) is a privately held global technology integrator and supply chain solutions provider. Through our culture of innovation, we inspire, build and deliver business results, from idea to outcome.Based in St. Louis, WWT works closely with industry leaders such as Cisco, VMware, NetApp, Dell EMC, HPE and several others,...
-
DevSecOps Engineer – AWS
4 days ago
Hyderabad, Telangana, India ID4 Consultancy Full time ₹ 1,44,000 - ₹ 14,40,000 per yearJob Title: DevSecOps Engineer – AWS & AzureLocation: Hyderabad (5days work from Office)Engagement: 6-Month Contract and extendableBudget : INR 1 Lacs to 1.2 Lacs per monthAbout the RoleWe are seeking a highly skilled DevSecOps Engineer with strong expertise in AWS, Azure, and Cloud Security to collaborate with End client. This role will focus on...
-
Lead DevSecOps Engineer
11 hours ago
Hyderabad, Telangana, India Cling Multi Solutions Full time ₹ 12,00,000 - ₹ 36,00,000 per yearCorporate Title : Senior Associate LevelFunctional Title : Lead DevSecOps EngineerJob Type: Contractual/Freelacing We are seeking an experienced and highly skilled DevSecOps Engineer to join our dynamic team. As a DevSecOps Engineer, you will play a crucial role in ensuring the security, reliability, and efficiency of our software development and...
-
Lead Devsecops Engineer
4 weeks ago
Hyderabad, Telangana, India Amgen Full timeCareer Category Information Systems Join Amgen s Mission of Serving Patients At Amgen if you feel like you re part of something bigger it s because you are Our shared mission to serve patients living with serious illnesses drives all that we do Since 1980 we ve helped pioneer the world of biotech in our fight against the world s toughest diseases ...
-
Devsecops Engineer
2 days ago
Hyderabad, Telangana, India Orcapod Consulting Services Full time ₹ 8,00,000 - ₹ 12,00,000 per yearRole & responsibilitiesManual & Automation Testing, DevSecOps, Agile frameworkPreferred candidate profile
-
Lead DevSecOps Engineer
4 days ago
Hyderabad, Telangana, India Amgen Full time ₹ 12,00,000 - ₹ 36,00,000 per yearCareer CategoryInformation SystemsJob Description Join Amgen's Mission of Serving PatientsAt Amgen, if you feel like you're part of something bigger, it's because you are. Our shared mission—to serve patients living with serious illnesses—drives all that we do.Since 1980, we've helped pioneer the world of biotech in our fight against the world's...
-
Senior Manager, Devsecops
4 weeks ago
Hyderabad, Telangana, India Amgen Full timeCareer Category Information Systems Join Amgen s Mission of Serving Patients At Amgen if you feel like you re part of something bigger it s because you are Our shared mission to serve patients living with serious illnesses drives all that we do Since 1980 we ve helped pioneer the world of biotech in our fight against the world s toughest diseases ...
-
Devsecops Consultant
3 weeks ago
Hyderabad, Telangana, India Wipro Full timeWe use cookies to offer you the best possible website experience Your cookie preferences will be stored in your browser s local storage This includes cookies necessary for the website s operation Additionally you can freely decide and change any time whether you accept cookies or choose to opt out of cookies to improve website s performance as well as...
-
Senior Manager, DevSecOps
1 week ago
Hyderabad, Telangana, India Amgen Full time ₹ 2,00,00,000 - ₹ 2,50,00,000 per yearCareer CategoryInformation SystemsJob Description Join Amgen's Mission of Serving PatientsAt Amgen, if you feel like you're part of something bigger, it's because you are. Our shared mission—to serve patients living with serious illnesses—drives all that we do.Since 1980, we've helped pioneer the world of biotech in our fight against the world's toughest...
-
DevSecOps Cloud Security Specialist
2 weeks ago
Hyderabad, Telangana, India beBeeCloudSecurity Full time ₹ 9,00,000 - ₹ 12,00,000Job Summary">Note: We are looking for a highly skilled DevSecOps Engineer to join our team. The ideal candidate will have experience in implementing and managing DevSecOps practices across cloud environments, as well as developing and maintaining Infrastructure as Code (IaC) using Terraform.Key Responsibilities:Implement and manage DevSecOps practices across...