Job Specifications
About Strategic Link Consulting
At Strategic Link Consulting, we are the leading SaaS Fintech solution for Turnkey Lending. Our operational environment is a complex, high-availability Hybrid Cloud model, blending the scale of AWS with the stability and security of our proprietary on-premises data centers. We are seeking a seasoned expert to build and secure the platform that bridges these worlds.
The Opportunity
We are seeking a highly skilled and experienced Senior DevSecOps Engineer to build, secure and manage our critical Hybrid Cloud infrastructure. You’ll be the driving force behind securing and automating our hybrid cloud foundation, shaping how we protect and scale both cloud and on-prem systems. As the Senior DevSecOps Engineer, you’ll influence architecture decisions, embed security into every stage of development, and own the blueprint for a resilient, compliant infrastructure. Your work will directly protect our customers’ trust and enable the business to grow securely.
This role demands expertise in maintaining security consistency, unified identity management, and compliance across disparate infrastructure stacks.
What You'll Do (Key Responsibilities)
Architecture & Platform Security
Design, build, and maintain secure infrastructure across AWS and on-prem data centers.
Establish unified networking, secure transit, and consistent image/configuration management.
Apply cloud-native security controls (IAM, WAF, Security Groups) and on-prem security baselines.
Unified Identity & Access Management (IAM)
Implement consistent authentication and authorization policies across hybrid boundaries.
Integrate on-prem Active Directory with cloud IAM to provide seamless identity federation.
Automation & Security in CI/CD
Own the security pipeline, embedding automated security testing into CI/CD workflows.
Build and maintain scripts/tools for configuration management, incident response, and compliance checks.
Compliance & Audit Readiness
Ensure infrastructure meets SOC 2, ISO 27001, PCI DSS, and data residency requirements.
Partner with audit teams to provide evidence through automated reporting and monitoring.
Must-Have Skills & Experience
5 years of professional experience in DevOps, Security Engineering, or a DevSecOps-focused role, with significant experience in a hybrid environment.
Cloud Expertise: Deep, hands-on experience architecting, building, and securing a major public cloud environment (AWS).
IaC Mastery: Expert knowledge of Infrastructure as Code principles and tools, specifically Terraform, with proven experience building complex, multi-environment deployments.
Container Security: Experience securing containerized workloads and orchestration platforms (e.g., Docker, Kubernetes), including cluster deployments on both cloud and bare-metal/virtualized on-prem infrastructure.
Desired Skills & Experience
On-Premises Security: Proven experience securing traditional data center infrastructure, including:
Server Hardening (Linux/Windows)
Network Security/Segmentation (Firewalls, Load Balancers)
Configuration Management (e.g., Ansible, Puppet, Chef)
Virtualization technologies (e.g., Proxmox, Hyper-V)
Unified IAM: Strong proficiency with Identity & Access Management systems, including managing federation or synchronization between on-premises (e.g., Active Directory) and cloud identity providers.
Preferred Skills & Experience
Certifications such as CISSP, AWS Certified Security, GitHub Actions Certification,. CISM, or relevant on-prem infrastructure security certs.
Prior experience with hardware security modules (HSMs) or enterprise-grade secrets management in a hybrid setup.
Familiarity with Python, Bash, PowerShell, Go, Ruby Chef, Puppet, Visual Studio Code.