LOG IN
SIGN UP
Canary Wharfian - Online Investment Banking & Finance Community.
Sign In
or continue with e-mail and password
Forgot password?
Don't have an account?
Create an account
or continue with e-mail and password
By signing up, you agree to our Terms & Conditions and Privacy Policy.

DevSecOps Specialist

ExperiencedNo visa sponsorship
Vanguard logo

at Vanguard

Asset Management

Posted 3 days ago

No clicks

**DevSecOps Specialist**: Manages secrets scanning solutions (GHAS, Wiz) and integrates detection into CI/CD pipelines. Responsible for configuring detection rules, prioritizing exposed secrets, driving remediation, and automation. Troubleshoots issues, maintains operational health, and improves developer experience. Requires 4+ years of relevant experience, security certifications preferred (CISSP, GSEC, CEH).

Compensation
Not specified

Currency: Not specified

City
Not specified
Country
United States

Full Job Description

Provides intermediate technical expertise on the development and support of all activities, processes, and tools used for assessing, validating, and ensuring the vulnerability and integrity of systems, architectures, and configurations.

Core Responsibilities

  • Implement and operate enterprise secrets scanning solutions (e.g., GHAS, Wiz)

  • Integrate secrets detection into CI/CD pipelines and PR workflows

  • Configure detection rules, patterns, and policy thresholds to reduce noise

  • Identify, triage, and prioritize exposed secrets across repositories and platforms

  • Drive remediation with engineering teams (revoke, rotate, remove exposed secrets)

  • Build automation for secrets detection, alerting, and response workflows

  • Ensure reliable and scalable execution of scanning across pipelines

  • Maintain monitoring, alerting, and operational health of secrets platforms

  • Troubleshoot pipeline/tooling issues and perform root cause analysis

  • Partner with IAM, pipeline, and AppSec teams for credential lifecycle governance

  • Improve developer experience by minimizing friction and providing clear remediation guidance

  • Contribute to continuous improvement and automation of AppSec/security processes


Qualifications

  • Minimum four years related work experience. Experience in IT security or application development preferred.

  • Undergraduate degree in related field or equivalent combination of training and experience.

  • Preferred security certification such as ISC2 CISSP, GIAC Security, Essentials Certification (GSEC), GIAC Penetration Tester Certification (GPEN), GIAC Web App Pen Tester (GWPN), or Certified Ethical Hacker (CEH)

Special Factors

Sponsorship

Vanguard is not offering visa sponsorship for this position.

About Vanguard

At Vanguard, we don't just have a missionwe're on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

Apply now

SIMILAR OPPORTUNITIES

Capgemini logo

DevSecOps Engineer

Capgemini

Added 10 days ago

Booz Allen Hamilton logo

DevSecOps Engineer

Booz Allen Hamilton

Added 11 days ago

Vanguard logo

Offensive Security Analyst, Senior Specialist

Vanguard

Added 12 days ago

ING Bank logo

Secure Development Engineer

ING Bank

Added 13 days ago

Qube logo

Platform Security Engineer (DevSecOps) – Contract

Qube

Added 12 days ago

DevSecOps Specialist

Apply now

Compensation

Not specified

City: Not specified

Country: United States

Vanguard logo
Asset Management

3 days ago

No clicks

at Vanguard

ExperiencedNo visa sponsorship

**DevSecOps Specialist**: Manages secrets scanning solutions (GHAS, Wiz) and integrates detection into CI/CD pipelines. Responsible for configuring detection rules, prioritizing exposed secrets, driving remediation, and automation. Troubleshoots issues, maintains operational health, and improves developer experience. Requires 4+ years of relevant experience, security certifications preferred (CISSP, GSEC, CEH).

Full Job Description

Provides intermediate technical expertise on the development and support of all activities, processes, and tools used for assessing, validating, and ensuring the vulnerability and integrity of systems, architectures, and configurations.

Core Responsibilities

  • Implement and operate enterprise secrets scanning solutions (e.g., GHAS, Wiz)

  • Integrate secrets detection into CI/CD pipelines and PR workflows

  • Configure detection rules, patterns, and policy thresholds to reduce noise

  • Identify, triage, and prioritize exposed secrets across repositories and platforms

  • Drive remediation with engineering teams (revoke, rotate, remove exposed secrets)

  • Build automation for secrets detection, alerting, and response workflows

  • Ensure reliable and scalable execution of scanning across pipelines

  • Maintain monitoring, alerting, and operational health of secrets platforms

  • Troubleshoot pipeline/tooling issues and perform root cause analysis

  • Partner with IAM, pipeline, and AppSec teams for credential lifecycle governance

  • Improve developer experience by minimizing friction and providing clear remediation guidance

  • Contribute to continuous improvement and automation of AppSec/security processes


Qualifications

  • Minimum four years related work experience. Experience in IT security or application development preferred.

  • Undergraduate degree in related field or equivalent combination of training and experience.

  • Preferred security certification such as ISC2 CISSP, GIAC Security, Essentials Certification (GSEC), GIAC Penetration Tester Certification (GPEN), GIAC Web App Pen Tester (GWPN), or Certified Ethical Hacker (CEH)

Special Factors

Sponsorship

Vanguard is not offering visa sponsorship for this position.

About Vanguard

At Vanguard, we don't just have a missionwe're on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

SIMILAR OPPORTUNITIES

Capgemini logo

DevSecOps Engineer

Capgemini

Added 10 days ago

Booz Allen Hamilton logo

DevSecOps Engineer

Booz Allen Hamilton

Added 11 days ago

Vanguard logo

Offensive Security Analyst, Senior Specialist

Vanguard

Added 12 days ago

ING Bank logo

Secure Development Engineer

ING Bank

Added 13 days ago

Qube logo

Platform Security Engineer (DevSecOps) – Contract

Qube

Added 12 days ago

Careers
© 2026 Canary Wharfian. All Rights Reserved.
LinkedIn
Instagram
Canary Wharfian
ForumAboutBecome a Brand AmbassadorContact UsPrivacy PolicyTerms & Conditions
LinkedIn
Instagram
© 2026 Canary Wharfian. All Rights Reserved.