JOBSEARCHER
SIGN IN

Cyber Security Engineer (DevSecOps)

ARCHIVED

We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.

Position SummaryThe Cyber Security Engineer (DevSecOps) builds and maintains the automation, pipelines, and integrations that keep ECI’s flagship security platform running. This is a hands-on, implementation-focused role: you will write production Python, ship CI/CD and infrastructure-as-code, and build and operate detection and response workflows in the Elastic Stack (Elasticsearch, Logstash/Beats, Kibana). It suits an engineer with a strong software-development foundation who wants to own the build-and-deploy side of security operations and turn manual work into reliable, automated systems. You will report into and implement the standards set by the Cybersecurity Architect.Position ResponsibilitiesBuild and maintain Python automation, services, and integrations that improve detection, response, and customer experience across the security platformDevelop and operate CI/CD pipelines and infrastructure-as-code (Terraform, Ansible) to deploy and maintain security toolingBuild and tune detection and response content in the Elastic Stack: data ingestion, parsing and normalization, detection rules, and Kibana dashboardsIntegrate security tools and data sources using REST APIs, webhooks, and SOAR playbooksContainerize and deploy workloads with Docker and Kubernetes following secure-deployment practicesWrite tests, documentation, and runbooks for the workflows and scripts you shipWork alongside the Cybersecurity Architect to implement the platform’s reference architecture and detection standardsPosition RequirementsDegree in Computer Science or Cyber Security, or equivalent hands-on experience2+ years building software in a professional setting, with strong Python development (services, automation, and APIs, not only light scripting)Hands-on experience with the Elastic Stack (Elasticsearch, Logstash/Beats, Kibana) for log ingestion, detection, or analyticsPractical CI/CD experience, including automated testing, build pipelines, and secure deployment workflowsWorking knowledge of infrastructure-as-code (Terraform, Ansible, or Salt) and configuration managementProficiency with Git/GitHub in a collaborative engineering workflowExperience with REST APIs, webhooks, and integrations in automation workflowsFamiliarity with core security concepts: logging, alerting, threat detection, and incident responseWorking knowledge of Linux and Windows and their security implicationsStrong problem-solving mindset and clear written and verbal communicationPreferred ExperienceExperience automating detection and response workflows in a SIEM/XDR (Elastic preferred; Splunk or Microsoft Sentinel a plus)Working knowledge of the MITRE ATT&CK framework and its use in detection engineeringExposure to SOAR, MISP, or Sigma and detection-as-code practicesFoundational cloud security on AWS or Azure (IAM, shared responsibility model, basic compliance)Exposure to container security and Kubernetes hardeningInterest in applying AI tooling to security automation ECI’s culture is all about connection - connection with our clients, our technology and most importantly with each other. In addition to working with an amazing team around the world, ECI also offers a competitive compensation package and the range for this role is a maximum of $150,000 annually (depending on experience & location), plus variable with flexible PTO, health benefit eligibility the first of the month, life insurance, pet insurance, 401K and so much more! If you believe you’d be a great fit and are ready for your best job ever, we’d like to hear from you!!Love Your Job, Share Your Technology Passion, Create Your Future Here!