Overview
On Site
Full Time
Skills
Mergers and Acquisitions
Information Security
Scripting
Innovation
Continuous Integration
Continuous Delivery
Mentorship
Risk Management
Collaboration
Reliability Engineering
Vulnerability Management
Security QA
Reporting
DevSecOps
Computer Science
Information Systems
Terraform
Scripting Language
Groovy
Jenkins
Google Cloud Platform
Google Cloud
Storage
Configuration Management
Security Operations
Analytical Skill
Problem Solving
Conflict Resolution
Cloud Security
Management
Cloud Computing
Writing
Git
Technical Drafting
Electronic Commerce
Amazon Web Services
Law
Privacy
Job Details
Our Opportunity:
Chewy is seeking a DevSecOps Engineer II to join our established technology team in Plantation, FL or Boston, MA. Our mission is to be the most trusted and convenient destination for pet parents and partners, and our Information Security team plays a meaningful role in supporting that vision by protecting the confidentiality, integrity, and availability of our data. In this role, you will help secure Chewy's public cloud environments by developing and integrating security tools, writing scripts and automation to support cloud security objectives, and implementing scalable solutions that align with our security standards. The ideal candidate will contribute to key security initiatives while adopting Chewy's culture of innovation (#ThinkBig) and simplicity (#KeepItSimple)!
What You'll Do:
What You'll Need:
Bonus (if applicable):
Chewy is committed to equal opportunity. We value and embrace diversity and inclusion of all Team Members. If you have a disability under the Americans with Disabilities Act or similar law, and you need an accommodation during the application process or to perform these job requirements, or if you need a religious accommodation, please contact
If you have a question regarding your application, please contact
To access Chewy's Customer Privacy Policy, please click here. To access Chewy's California CPRA Job Applicant Privacy Policy, please click here.
Chewy is seeking a DevSecOps Engineer II to join our established technology team in Plantation, FL or Boston, MA. Our mission is to be the most trusted and convenient destination for pet parents and partners, and our Information Security team plays a meaningful role in supporting that vision by protecting the confidentiality, integrity, and availability of our data. In this role, you will help secure Chewy's public cloud environments by developing and integrating security tools, writing scripts and automation to support cloud security objectives, and implementing scalable solutions that align with our security standards. The ideal candidate will contribute to key security initiatives while adopting Chewy's culture of innovation (#ThinkBig) and simplicity (#KeepItSimple)!
What You'll Do:
- Lead application and infrastructure as code scanning toolset and integrations with CI/CD pipelines.
- Provide security mentorship and risk management through design and code reviews of services running on our public clouds.
- Collaborate with Site Reliability Engineering, Vulnerability Management, and Security Operations teams to achieve shared security goals.
- Evaluate and analyze threats, vulnerabilities, and security risks in AWS and Google Cloud Platform.
- Drive shift-left security strategy and automate security testing across public clouds and development environments.
- Develop and report DevSecOps metrics to collaborators.
- Design, implement, and supervise security tooling and systems.
- Ensure applications and infrastructure deployed to public clouds meet performance, privacy, and security requirements.
What You'll Need:
- Bachelor's degree or higher in Computer Science, Computer Information Systems, or similar; or equivalent experience.
- Ability to write functional Terraform or equivalent infrastructure as code language or scripting language
- Experience with Groovy for Jenkins pipeline file development.
- Experience leading AWS native security services: Guard Duty, Security Hub, Trust Advisor, Organization Delegated Administrator, IAM, KMS.
- Experience running Google Cloud Platform native security services: Security Command Center, IAM, Google Cloud Storage, Logs and Log Sinks.
- Solid understanding of common technical controls across security domains (logical access, configuration management, security operations etc.)
- Excellent analytical and problem-solving skills, with the ability to identify, mitigate and communicate risks effectively to partners.
- Experience deploying Cloud Security Posture Management (CSPM) platform technologies on public clouds.
- Experience with public cloud container technologies such as ECS, EKS, GKE etc.
- Ability to balance multiple priorities at a given time.
- Must be team oriented and have a customer first approach.
Bonus (if applicable):
- Ability to extend the functionality of existing tools and platforms with APIs by writing software.
- Experience handling commercial security tools and platforms.
- Knowledge of Open Policy Agent - Rego.
- Understanding of Git and GitOps concepts.
- Experience drafting architecture diagrams and identifying requirements to securely deploy services in public clouds, and communicate those requirements to business partners.
- Experience working in a fast paced e-commerce environment.
- Experience investigating security incidents in public clouds (AWS, Google.)
Chewy is committed to equal opportunity. We value and embrace diversity and inclusion of all Team Members. If you have a disability under the Americans with Disabilities Act or similar law, and you need an accommodation during the application process or to perform these job requirements, or if you need a religious accommodation, please contact
If you have a question regarding your application, please contact
To access Chewy's Customer Privacy Policy, please click here. To access Chewy's California CPRA Job Applicant Privacy Policy, please click here.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.