Cloud DevSecOps Engineer Sr

Posted Tuesday, May 6, 2025 at 4:00 AM | Expires Monday, July 7, 2025 at 3:59 AM

Dayforce is a global human capital management (HCM) company headquartered in Toronto, Ontario, and Minneapolis, Minnesota, with operations across North America, Europe, Middle East, Africa (EMEA), and the Asia Pacific Japan (APJ) region. Our award-winning Cloud HCM platform offers a unified solution database and continuous calculation engine, driving efficiency, productivity and compliance for the global workforce. Our brand promise - Makes Work Life Better TM - Reflects our commitment to employees, customers, partners and communities globally.

Location: Work is what you do, not where you go. For this role, we are open to remote work and can hire anywhere in the United States or Canada

About the opportunity

We are seeking a Cloud DevSecOps Engineer Sr to integrate security practices into our cloud infrastructure and DevOps processes. The ideal candidate will secure cloud-native applications and infrastructure while enabling rapid development and deployment in a secure environment. This role involves collaborating with cross-functional teams to build, monitor, and maintain secure cloud solutions.

What you'll get to do

• Cloud Security Implementation:
  • Design and implement secure cloud environments in platforms in Azure/AWS ensuring adherence to best practices.
  • Develop and enforce cloud security policies, IAM configurations, and network security controls (e.g., firewalls, security groups).
  • Conduct risk assessments, threat modeling, and vulnerability management for cloud workloads.
• Automate security checks in CI/CD pipelines using tools like Prisma Cloud, SonarQube, and Checkov.
• Integrate SAST, DAST, and container security scans into development workflows.
• Ensure Infrastructure as Code (IaC) templates (e.g., Terraform, Ansible,DSC) meet security and compliance standards.
• Container Image Management:
  • Implement and maintain secure container image repositories.
  • Ensure container images are scanned for vulnerabilities using tools like Trivy or Prisma Cloud.
  • Establish policies for image signing, versioning, and secure deployment practices.
  • Work with development teams to adopt best practices for containerization, including minimizing attack surfaces and ensuring compliance with security standards.
• Compliance and Governance:
  • Ensure cloud environments comply with regulatory frameworks (e.g., GDPR, HIPAA, ISO 27001).
  • Maintain cloud security certifications and documentation.
  • Collaboration and Training:
  • Work closely with development and operations teams to implement secure coding practices and build security-first cloud-native solutions.
  • Lead workshops and training sessions on cloud security and DevSecOps methodologies.

Skills and experience we value

• Bachelor’s degree in Computer Science, Information Technology, or a related field or equivalent experience
• 5+ years of experience in cloud infrastructure, DevOps, or security roles, with at least 2 years in cloud security or DevSecOps.
• Proficiency with Azure/AWS and their native security tools.
• Experience with IaC tools (Terraform, Ansible, DSC) and securing IaC workflows.
• Strong knowledge of security tools like Checkov, SonarCube or Prisma Cloud.
• Expertise in container security (e.g., Docker, Kubernetes).
• Experience with container image scanning and secure image management practices.
• Familiarity with tools like Artifactory for container and artifact management.
• Familiarity with scripting languages (Python, Bash, or PowerShell).
• Knowledge of compliance frameworks such as CIS Benchmarks, PCI DSS, or NIST.

What would make you really stand out

• Certifications: Azure Security Engineer, or Certified Kubernetes Security Specialist (CKS).
• Experience with GitOps tools like ArgoCD or FluxCD.
• Understanding of microservices and serverless security.
• Analytical and problem-solving mindset.
• Ability to work in a fast-paced environment.
• Strong communication and teamwork skills.

What’s in it for you

Dayforce is fueled by the diversity of our talented employees. We are an equal opportunity employer and consider and embrace ALL individuals and what makes them unique. We believe our employees should be happy and healthy, with peace of mind and a sense of fulfillment.

We encourage individuals to apply based on their passions.

Dayforce encourages personal and professional growth. We offer excellent time away from work programs, comprehensive wellness initiatives and recognition through competitive pay and benefits.

With a commitment to community impact, including volunteer days and our charity, Dayforce Cares we provide opportunities for you to thrive both in your career and personal life. Our focus is not just on your job but on supporting you to be the best version of yourself.

About the Salary Ranges

Please note that the salary range mentioned in this job description should serve simply as a guide. The final compensation offered may vary based on a variety of factors, including bonuses and/or incentives, or a candidate’s experience, skills, budget and location. Our company is committed to providing a fair, equitable, and competitive package that reflects the value an individual brings to the organization.

Fraudulent Recruiting

Beware of fraudulent recruiting. Legitimate Dayforce contacts will use an @dayforce.com or @Ceridian.com email address. We do not request money, checks, equipment orders, or sensitive personal data during the recruitment process. If you have been asked for any of the above, or believe you have been contacted by someone posing as a Dayforce employee, please refer to our fraudulent recruiting statement found here:https://www.dayforce.com/be-aware-of-recruiting-fraud