Senior DevSecOps Engineer

We believe power is a promise - a shared commitment to be there for others when it matters most.

For more than 65 years, we've turned big ideas into solutions that help protect homes, strengthen businesses and build a more resilient, efficient, sustainable energy future.

Ready to Power a Smarter World with us?

As a Senior DevSecOps Engineer you will serve as a technical leader at the intersection of development, security and operations for our cloud team supporting the secure transmission, processing, and storage of data from IoT devices. In this role, you will ensure that all cloud services, networks and data pipelines are secure and compliant with industry standards. You will work closely with the development team, prioritizing a "Shift Left" culture by automating compliance and security scanning throughout the software development lifecycle, empowering developers to maintain high velocity without compromising on industry standards.

Some areas of focus are -

Cloud Security Architecture:

• Design and implement secure-by-default cloud infrastructure to handle data transmitted from IoT devices and between cloud services.
• Develop secure mechanisms for data storage and processing, including encryption and secure authentication frameworks to support the confidentiality, integrity and availability of data.
• Enable the provisioning of secure cloud infrastructure through the development of infrastructure as code (Iac) modules which align with security best practices and industry regulations.

Secure Cloud Communication and Data Handling:

• Ensure all data transmitted from IoT devices to the industrial cloud is encrypted and securely handled.
• Implement network-level security measures to protect cloud infrastructure from threats like man-in-the-middle attacks, DDoS, and unauthorized access.
• Develop security protocols for managing data at rest and in transit across cloud services, ensuring compliance with industry standards.

Cloud Integration and Security Controls:

• Oversee the integration of various cloud services to ensure secure data ingestion, storage, and processing.
• Implement and maintain secure access control mechanisms, ensuring only authorized systems and personnel can interact with cloud-based data.
• Manage secure API connections and authentication methods between cloud systems and other enterprise services.

Cloud Security Compliance and Auditing:

• Ensure the industrial cloud infrastructure complies with security standards such as ISO 27001 and ongoing compliance through regular audits and assessments.
• Conduct vulnerability assessments and security reviews of the cloud environment to identify and address potential risks.

Threat Modeling and Vulnerability Management:

• Perform threat modeling and vulnerability assessments to identify potential attack vectors within the cloud infrastructure.
• Implement security monitoring and alerting systems to detect and respond to potential threats or unauthorized activities in real-time.

Cross-functional Collaboration:

• Collaborate with cloud engineers, network security teams, DevOps and other DevSecOps engineers to ensure security is integrated throughout the cloud infrastructure and software development lifecycles.
• Provide mentoring on secure cloud infrastructure design, development, and maintenance to align with security best practices and industry regulations.
• Lead security awareness and training programs for teams involved in managing Generac's industrial cloud infrastructure.

Minimum Qualifications:

• B.S. in Computer Science, Cybersecurity, Engineering or equivalent years of work experience.
• 5+ years of experience in cloud security, with a focus on securing cloud infrastructure for data processing and storage.

Preferred Qualifications:

• Strong understanding of cloud security, identity management, secure communication protocols (e.g., TLS), and data encryption.
• Proven experience working with public cloud platforms (e.g., AWS, Azure, Google Cloud) to secure cloud environments and services.
• Experience with SAST/DAST tools, container security and vulnerability management.
• Knowledge of ISO 27001 compliance requirements for cloud environments.
• Experience with infrastructure as code, preferably Terraform
• Certifications such as CISSP, CCSP, GCSA or cloud-specific security or automation certifications are highly desirable.

Generac is committed to fair and equitable compensation practices. The salary range for this role based in USA and Canada is $145,000 USD & CAD -185,000 USD & CAD respectively. This compensation will ultimately be in line with the location in which the position is filled. Final compensation for this role will be determined by various factors such as a candidate's relevant work experience, skills, certifications and geographic location. This role is eligible for variable compensation including short-term and long-term incentives.

This position includes a comprehensive benefit package that includes medical, dental and vision plans; life, long-term disability, flexible spending and health savings accounts, accrued paid time off, paid Holidays and 401(k)/RRSP retirement benefits.

"We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability status, protected veteran status, or any other characteristic protected by law."