Manager, DevSecOps

The Manager, DevSecOps is responsible for leading the DevSecOps function and driving the adoption of secure, scalable, and efficient software delivery practices across the organization. This role will manage a team of DevSecOps engineers and work closely with Engineering, Security, Infrastructure, SRE, and Product teams to embed security, automation, and operational excellence throughout the software development lifecycle.

This leader will play a key role in advancing CI/CD maturity, strengthening cloud security and compliance, improving developer experience, and enabling platform engineering capabilities that support standardization, self-service, and faster delivery.

Key Responsibilities

Team Leadership and Management

• Lead, mentor, and develop a team of DevSecOps engineers.
• Set team priorities, assign work, and ensure accountability for deliverables and outcomes.
• Build a high-performing team culture focused on ownership, collaboration, continuous improvement, and execution excellence.
• Support hiring, onboarding, coaching, and performance management for the DevSecOps team.

 

DevSecOps Strategy and Execution

• Drive the implementation and continuous improvement of DevSecOps practices across the organization.
• Lead efforts to design, standardize, and support secure CI/CD pipelines, release automation, and deployment frameworks.
• Promote shift-left security by integrating security controls and compliance checks into the software development lifecycle.
• Establish and maintain standards for infrastructure as code, automation, and secure delivery practices.

 

Cloud Security, Governance, and Compliance

• Partner with Security and Cloud teams to implement cloud security guardrails, policy enforcement, and compliance controls.
• Help ensure alignment with regulatory and compliance requirements, including healthcare and enterprise security standards where applicable.
• Oversee remediation of security findings related to infrastructure, CI/CD, containers, and cloud platforms.
• Drive security awareness and secure engineering practices across teams.

 

Observability, Reliability, and Operational Excellence

• Collaborate with SRE and Infrastructure teams to improve observability, monitoring, alerting, and operational readiness.
• Support the use of logs, metrics, traces, and dashboards to improve service visibility and reduce operational risk.
• Ensure DevSecOps practices support reliability goals, incident response readiness, and operational maturity.

 

Platform Engineering and Developer Experience

• Support platform engineering initiatives that improve developer productivity and self-service capabilities.
• Contribute to the development of internal developer platforms and standardized tooling that simplify infrastructure and application delivery.
• Drive improvements in developer experience by reducing friction in provisioning, deployment, and operational workflows.
• Promote the use of tools and frameworks such as Backstage, Crossplane, and GitOps-based models where appropriate.

 

Cost Optimization and Efficiency

• Partner with Cloud and Finance stakeholders to promote cost-aware engineering practices and cloud optimization.
• Identify opportunities to improve resource utilization, standardization, and automation to reduce unnecessary spend.
• Support governance processes that align engineering velocity with operational and financial discipline.

 

Cross-Functional Partnership

• Work closely with Engineering, Product, Security, Infrastructure, SRE, and leadership teams to align priorities and execution.
• Communicate plans, progress, risks, and dependencies clearly to both technical and non-technical stakeholders.
• Serve as a trusted partner in driving enterprise-wide DevSecOps and platform engineering initiatives.