Who are we?Checkmarx is the enterprise application security leader and the host of Checkmarx One™ — the industry -leading cloud-native AppSec platform that helps enterprises build #DevSecTrust. Powered by the intelligence from our industry-leading AppSec security research team, and our AI-driven technology and services, our platform is designed to enable CISOs, AppSec and development leaders to prioritize their teams’ focus on what impacts their business. Our offerings secure every phase of development for every application, from the very first line of code through production, while simultaneously balancing the dynamic needs of security and development teams.We are honored to serve more than 1,800 customers, which includes 60 percent of all Fortune 100 organizations. We are committed to moving forward with the unwavering dedication to the safety and security of our customers, and the applications that power our day-to-day lives. What are we looking for?Checkmarx is seeking a talented Senior DevSecOps Engineer to join our growing Checkmarx One™ Platform Engineering DevOps group. Checkmarx One™ is our flagship unified Application Security Platform, developed with the most cutting-edge cloud native technologies, and deployed in multi-cloud and on-premises environments.How will you make an impact?Design, implement, and automate secure, scalable infrastructure for Checkmarx One™ environments, ensuring scale, high availability and compliance with FedRAMP requirements.Develop and maintain CI/CD pipelines with a focus on secure software supply chain practices (e.g., SBOMs, signing, verification).Harden Kubernetes-based deployments by building and enforcing security controls using Kubernetes Operator Framework, Network Policies, and Pod Security Standards.Integrate and manage observability and security monitoring tools, such as Fluent Bit, ELK, Grafana, Prometheus, and cloud-native security tooling (e.g., AWS GuardDuty, Inspector).Collaborate with application security, product engineering, and compliance teams to define and enforce DevSecOps best practices.Conduct threat modeling and risk assessments of infrastructure changes and implement remediation strategies as needed.Lead the adoption of secure-by-default templates infrastructure-as-code (AWS CDK, Terraform, etc.) reusable automation.Assist in evidence collection and environment preparation for FedRAMP audits and continuous monitoring.