Senior DevSecOps Engineer

At Pedestal Health, our mission is driven by a deep commitment to people, the patients we serve, the partners we collaborate with, and the dedicated team members who power our work. As a purpose-driven organization, we leverage real-world data to advance clinical research and inform better healthcare decisions. We foster a collaborative environment where every voice is heard, every idea has an impact, and every contribution helps improve lives. If you're seeking a place where your work truly matters, join us to help advance science securely and responsibly.

Overview

• Seeking a Senior DevSecOps Engineer to secure internal infrastructure, cloud services, deployment tooling, and development workflows
• Lead design, implementation, and continuous improvement of secure, scalable production platforms
• Embed security across the full software development lifecycle (SDLC)
• Partner closely with engineering, infrastructure, and application teams
  
  

What You’ll Do

• Perform advanced vulnerability assessments across cloud, infrastructure, and application platforms
• Partner with application owners to prioritize and drive remediation efforts
• Design, implement, and optimize secure CI/CD pipelines and deployment tooling
• Integrate security into the SDLC (code scanning, secrets management, policy enforcement)
• Apply best practices for system hardening, configuration management, IAM, and least-privilege access
• Define and evolve security controls, standards, and guardrails across the organization
• Leverage modern cloud and DevOps technologies to build secure, scalable infrastructure
• Lead and support security incident response, including root cause analysis and long-term remediation
• Mentor engineers and promote a strong security-first culture
• Develop and maintain security documentation, runbooks, and internal knowledge sharing
  
  

What You’ll Bring

• Bachelor’s degree in Computer Science, Engineering, or related field (or equivalent experience)
• 5 years of experience in security engineering, DevSecOps, or infrastructure security
• Hands-on experience securing cloud platforms (AWS preferred) at scale
• Experience securing CI/CD pipelines and containerized environments (Docker, Kubernetes)
• Strong experience with Infrastructure as Code (Terraform, CloudFormation, Chef, Puppet, Ansible, or Salt)
• Solid networking fundamentals (VPCs, ACLs, subnets, DNS, routing, segmentation)
• Experience with Linux systems and relational databases (PostgreSQL)
• Proficiency in at least one scripting language and Git-based workflows
• Experience with security tooling (SAST, DAST, dependency scanning, secrets management)
• Strong collaboration skills in distributed teams
• Clear communication, ownership mindset, and strong problem-solving abilities
  
  

Nice to Have

• Experience in regulated environments (healthcare, life sciences, or similar)
• Advanced networking and cloud security experience (firewalls, zero-trust architectures)
• Familiarity with CSPM tools (Wiz, Rapid7, or similar)
• Kubernetes security and runtime protection experience
• Experience with Jira and Confluence
• CISSP, AWS Security Specialty, or similar certifications
  
  

If you’re excited to help protect systems that support meaningful healthcare research, where your expertise directly contributes to trust, compliance, and patient impact, Pedestal Health is the place for you. We’re building something important together, and we’d love for you to be a part of it.

What We Offer You

• Hybrid work — 3 days/week in our brand-new office!
• Comprehensive health, dental, and vision coverage for you and your family
• 401(k) with company match
• Generous PTO and company holidays
• Paid parental leave
  
  

Hybrid role: Located in Research Triangle Park, North Carolina