At Firebolt, our mission is to power the future of AI with the fastest and most scalable cloud data warehouse on the market. As we grow, maintaining a world-class security posture is a top priority—and we’re looking for a hands-on DevSecOps Engineer to help lead that charge.

This role sits at the heart of our security operations—focused on real-time detection, log analysis, infrastructure hardening, and securing our CI/CD pipelines. You’ll use your deep technical skills to detect and respond to threats, build proactive security controls, and automate monitoring across a complex cloud-native environment.

If you're passionate about defending distributed systems at scale, integrating intelligent alerting, and embedding security across the DevOps lifecycle—this is your opportunity to make a meaningful impact.

Key Responsibilities

• Monitor and analyze logs from SIEM, CSPM/ASPM tools, access controls, and cloud infrastructure to detect suspicious activity and emerging threats
• Build and fine-tune real-time alerts and detection rules for critical services, workflows, and user behavior anomalies
• Investigate incidents down to the OS level (Linux), identify root causes, and automate remediation workflows using scripting (Python, Go, or Bash)
• Enforce access policies and RBAC across systems and development environments
• Analyze findings from SAST/SCA scans and other code-level security tools; partner with engineering teams to prioritize and remediate vulnerabilities
• Strengthen CI/CD pipelines by integrating security testing and controls throughout build and deployment stages

Continuously assess cloud infrastructure security (AWS), containers, and Kubernetes configurations against best practices and frameworks (CIS, NIST, ISO 27001)

• Proven experience as a Security Engineer, Analyst, or in a Security Operations role within a modern cloud-native environment
• Strong Linux troubleshooting and OS-level debugging skills
• Hands-on experience with security tools such as CSPM, ASPM, SAST/SCA, secret scanners, vulnerability scanners, and container security platforms
• Expertise in analyzing and responding to alerts generated by SIEM tools and security monitoring systems
• Deep understanding of CI/CD processes and how to embed security into DevOps workflows
• Familiarity with common security frameworks and compliance requirements (e.g., NIST, CIS, ISO 27001)
• Proficiency in scripting languages (Python, Go, or Bash) to automate analysis, alerting, and remediation
• Knowledge of container security, Kubernetes RBAC, and hardening techniques in cloud environments
• Experience with AWS-native security services is highly desirable

Why Firebolt?

Firebolt is reimagining what cloud data infrastructure should look like in the era of AI. With ultra-low latency, high concurrency, and flexible architecture, we empower teams to build high-performance data products at scale. Backed by $270M+ in funding and some of the best minds in engineering, Firebolt offers the opportunity to build and defend a truly cutting-edge platform.