Manager, DevSecOps Engineering

About Teramind

Teramind is the leading platform for user behavior analytics, serving multiple use cases from insider risk mitigation to business process optimization. With our comprehensive suite of solutions, organizations gain unprecedented visibility into user activities while enhancing security, optimizing productivity, and ensuring compliance. Trusted by Fortune 500 companies and businesses of all sizes across industries, our innovative platform helps organizations protect sensitive data, maximize workforce performance, and create safer, more efficient digital workplaces. Through real-time monitoring and advanced analytics, we enable businesses to safeguard their most sensitive information while optimizing employee productivity in both in-office and remote work environments.

Our Core Values

At Teramind, our values drive everything we do. We embrace innovation as a fundamental principle, constantly pushing boundaries to improve our products, streamline processes, and enhance customer experiences. We foster resourcefulness by empowering our team members with the autonomy and confidence to solve problems independently while providing collaborative support when needed. As a globally inclusive organization, we celebrate diversity and create an adaptable work culture where respect and collaboration thrive across our international teams. Above all, we are committed to excellence, delivering the highest quality in every aspect of our work and consistently exceeding expectations in service to our clients and each other.

Key Responsibilities 

Security in the SDLC

• Own and enforce DevSecOps practices across CI/CD pipelines (SAST, DAST, SCA, and other practices)
• Integrate automated security tooling into development workflows; reduce manual security gates
• Partner with development teams to perform secure code reviews and threat modeling

Vulnerability & Risk Management

• Drive vulnerability identification, triage, and remediation across infrastructure and applications
• Manage security tooling stack
• Produce and maintain a risk register; track remediation SLAs

Penetration Testing, crowd testing & Incident Response

• Lead or coordinate internal/external penetration testing cycles
• Manage crowd testing campaigns
• Develop and maintain an incident response playbook; support incident investigations

Compliance & Governance

• Support compliance with SOC 2, ISO 27001, GDPR, and relevant data protection frameworks
• Define and enforce security policies, standards, and developer security training

Leadership & Collaboration

• Act as the primary security SME for the engineering organization
• Mentor developers on secure coding practices; build a security-first engineering culture
• Interface with external auditors, clients, and the executive team on security posture

Requirements

• 5+ years of experience in DevSecOps, application security, or security engineering
• Demonstrated experience managing security in software development environments (not just ops/infrastructure)
• Strong development background, proficiency in at least 1 language (eg: Python, Go, Java, C#)
• Hands on experience with CI/CD security tooling (SAST/DAST/SCA integration, secrets management)
• Experience with cloud security (AWS, Azure, or GCP) and container security (Docker, Kubernetes)
• Familiarity with SOC 2 or ISO 27001 compliance frameworks
• Excellent English communication skills (written and verbal)

Preferred/Nice to Have

• Penetration testing experience or relevant certification (OSCP, CEH, GPEN)
• Security certifications (CISSP, CSSLP, AWS Security Specialty, or similar)
• Experience at a B2B SaaS or cybersecurity product company
• Familiarity with insider threat, DLP, or endpoint security product domains

Why join us?

• Opportunity to shape the technical vision of a fast-growing company.

• Work alongside talented engineers solving challenging problems.

• Influence not just the codebase, but also the culture and processes of the engineering organization.

Benefits

This is a remote job. Work from anywhere! We’ve been thriving as a fully-remote team since 2014. To us, remote work means flexibility and having truly diverse, global teams.

Additionally:

• Collaboration with a forward-thinking team where new ideas come to life, experience is valued, and talent is incubated.

• Competitive salary

• Career growth opportunities

• Flexible paid time off

• Laptop reimbursement

• Ongoing training and development opportunities

About our recruitment process

We don’t expect a perfect fit for every requirement we’ve outlined. If you can see yourself contributing to the team, we want to hear your story. You can expect up to 3 interviews. In some scenarios, we’re able to streamline the process to have minimal rounds. Director-level roles and above should expect a more thorough process, with multiple rounds of interviews.

All roles require reference and background checks

Teramind is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration without regard to race, age, religion, color, marital status, national origin, gender, gender identity or expression, sexual orientation, disability, or veteran status.