Devsecops lead

Title:Devsecops lead
Location: Menlo Park, CA (Remote)
Duration: 12-Month Contract
Experience Level: 10+ Years

Position Overview
We are seeking a visionary Senior Cloud Technology Lead to architect and enforce enterprise-grade Zero Trust architectures and secure software supply chains. This role demands deep, hands-on expertise in cloud-native security orchestration, kernel-level detection engineering, and cutting-edge attestation frameworks across multi-cloud environments (AWS, Azure, Google Cloud Platform).

Core Responsibilities
Zero Trust Governance: Architect and deploy cryptographic workload identities and multi-cloud enterprise federation frameworks.
Supply Chain Attestation: Implement end-to-end pipeline enforcement, artifact provenance, and verifiable build attestations.
Policy & Detection Engineering: Build custom enterprise governance platforms and develop low-level, kernel-space security detection models.
Infrastructure as Code: Drive policy-as-code automation and secure cloud-native container orchestration platforms at scale.

Required Qualifications
Experience: 10+ years in Cloud Security, Platform Engineering, DevSecOps, or Infrastructure Security.
Cloud Mastery: Deep architectural and hands-on expertise across AWS, Azure, and Google Cloud Platform platforms.
Container Orchestration: Strong engineering experience with Kubernetes, containers, and cloud-native ecosystems.

Advanced Tooling (Mandatory Hands-On Experience):
Identity: SPIFFE / SPIRE enterprise federation
Supply Chain: In-Toto full pipeline enforcement & Tekton Chains production attestation
Governance: Custom OPA (Open Policy Agent) enterprise platforms
Detection: eBPF kernel-level detection engineering
Frameworks: Deep understanding of Zero Trust Architecture, cryptographic identities, and SLSA compliance.
Automation & Code: Advanced proficiency in Go, Python, Bash, Terraform, and YAML.