Lead DevSecOps Engineer

ComPsych^Ⓡ is the worldwide leader in organizational mental health, well-being, and absence management, dedicated to igniting human potential in workplaces across the globe. For over 40 years, we have combined the best in technology with unmatched human expertise to help individuals and their organizations thrive. Our GuidanceResources^Ⓡ and AbsenceResources^Ⓡ solutions deliver end-to-end mental health, well-being, work-life, health navigation, and absence support to more than 75,000 customers worldwide,  touching more than 160 million lives across 200 countries. Visit compsych.com to find out why 40% of the Fortune 500 choose ComPsych for their mental health and absence management needs.

We are seeking a Lead / Distinguished DevSecOps Engineer to serve as a hands-on technical leader who embeds security into every stage of our software delivery lifecycle across a multi-cloud environment (AWS, Azure, and others). This role blends deep technical execution with team leadership: you will architect secure, scalable, automated infrastructure, set engineering standards, and mentor and uplift a team of DevSecOps engineers in industry best practices. You will champion a “shift-left” security culture, integrate modern AI-powered tooling into engineering workflows, and partner with cross-functional teams and consultants to align secure cloud solutions with business objectives and drive innovation in cloud platform engineering.

This is a greenfield initiative, and the successful candidate will be expected to help build this organization from the ground level up—establishing the practices, standards, tooling, and team that will define DevSecOps at ComPsych.

• Serve as a technical subject matter expert and mentor DevSecOps engineers, providing guidance on industry best practices, secure design standards, and technical growth opportunities.
• Define, document, and evangelize DevSecOps standards, reference architectures, and engineering guardrails across teams.
• Design, build, and maintain secure CI/CD pipelines with automated security gates (SAST, DAST, SCA, secrets scanning, and container/image scanning).
• Architect and manage multi-cloud infrastructure across AWS, Azure, and other providers, ensuring consistency, resilience, security, and cost-effectiveness.
• Develop and maintain Infrastructure-as-Code using open-source, commercial, and/or cloud-native frameworks, along with configuration management tools such as Ansible.
• Embed security controls and policy-as-code into deployment workflows and enforce compliance guardrails.
• Evaluate and integrate AI tooling into DevSecOps CI/CD pipelines where appropriate to improve automation, security coverage, and engineering efficiency, establishing responsible-use guidelines for the team.
• Manage vulnerability management and support incident response for cloud and pipeline infrastructure, conducting root cause analysis for effective resolution.
• Deploy monitoring, logging, and alerting to proactively detect issues, resolve bottlenecks, and optimize resource utilization across environments.
• Manage secrets, identity, and access (IAM, RBAC, Key Vault, Secrets Manager, and secrets-management platforms).
• Evaluate container and orchestration technologies (e.g., Docker, Kubernetes), establish standards and best practices, and ensure their secure rollout and ongoing operational support.
• Enhance cloud performance, availability, security, and cost-effectiveness by implementing best practices and standards.
• Stay current on the latest multi-cloud and DevSecOps trends and technologies, evaluating and recommending new tools and services.
• Partner closely with Security Engineering teams—specifically Application Security (AppSec) and Infrastructure Security (InfraSec)—to operationalize their findings and controls within CI/CD pipelines and cloud infrastructure.
• Collaborate with internal teams to align and integrate secure cloud solutions with application development efforts.
• Participation in an on-call rotation.
• Other tasks as required.

• Education: Bachelor’s degree in Information Technology, Computer Science, or another relevant field required.
• 8+ years of relevant DevOps, security, or cloud engineering experience, with a demonstrable focus on DevSecOps (10+ years preferred for Distinguished level).
• Demonstrated leadership experience mentoring or leading engineers and setting technical standards.
• Relevant industry certifications in either AWS or Azure (e.g., AWS Certified Solutions Architect / Security – Specialty, Azure Solutions Architect Expert, Azure DevOps Engineer Expert, or comparable cloud certifications).
• Deep hands-on expertise across at least two major clouds, including AWS and Azure.
• Strong proficiency with Infrastructure-as-Code (cloud-native and open-source frameworks) and configuration management tools such as Ansible.
• Proven track record building secure CI/CD pipelines (e.g., GitHub Actions, GitLab CI, Azure DevOps, Jenkins).
• Strong scripting and automation skills (PowerShell, Shell, Python, or similar).
• Solid grasp of cloud security frameworks, network security, segmentation strategies, and identity management.
• Experience applying security and compliance frameworks and benchmarks, such as CIS Benchmarks, NIST, and HIPAA.
• Familiarity with microservices, serverless, and container orchestration (e.g., Kubernetes).
• Familiarity with cloud governance, cost management, and optimization techniques.
• Experience integrating or evaluating AI/ML developer and security tooling.
• Self-starter with the ability to multi-task and work autonomously.
• Excellent organizational and project management skills.
• Effective interpersonal and communication skills.

Other Requirements

• Consistent and reliable high-speed internet and workspace free from distraction, disruption, or noise is required
• Ability to be present on camera during work-related trainings, meetings, and/or events
• Must be able to sit or stand at a desk for prolonged periods while working on a computer

• Full benefits package, including Paid Time Off (PTO), medical, dental, vision, 401(k) with match, robust EAP, wellness program, and much more
• The salary range for this position is $200,000 - $220,000 (USD). The base salary range represents the anticipated low end and high end of the range for this position. The actual compensation will be influenced by a wide range of factors including, but not limited to previous experience, education, pay market/geography, and scheduled hours. 

EEO

ComPsych is an equal opportunity employer.  All applicants will be considered for employment regardless of race, color, age, genetics, religion, gender, sexual orientation, gender identity, national origin, disability or protected veteran status and any other characteristic protected by federal, state or local laws. ComPsych Corporation maintains a drug free workplace.

ComPsych Corporation and its affiliates is committed to the responsible and transparent handling of your personal data. Information collected during the recruitment process will be used to assess your application and, where applicable, to prepare and administer an offer of employment. Your personal data will be processed in accordance with the privacy laws applicable in your country or jurisdiction of residence, which may include the California Consumer Privacy Act (CCPA), the EU General Data Protection Regulation (GDPR), Canada's Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy legislation, and other applicable national or local privacy laws. For full details on what personal data we collect, how we use it, your rights as an Applicant, and how to contact us with privacy-related questions, please review the relevant Applicant Data Privacy Notices: US Applicant Data Privacy Notice & Canada Data Privacy Notice.