DevSecOps Engineer

At Outbuild, our innovative team is on a mission to transform how the construction industry plans and executes projects. Our all-in-one platform focuses on improving how construction teams manage scheduling, coordination, and communication. We apply Lean Construction and BIM principles to streamline these processes, enabling our clients—primarily in the U.S.—to work more efficiently.

Recently, we raised $11M in Series A funding from prominent investors such as Sway Ventures and Hilti Venture, solidifying our position as a rising leader in construction technology. We're proud to be recognized by CB Insights as one of the top 100 startups revolutionizing construction. If you’re eager to shape the future of this critical industry, we invite you to join our journey!

OUR CORE VALUES:

• Integrity: We do the right thing—even when it's hard, even when no one is looking. Our integrity builds trust with teammates, customers, and partners. It’s the foundation of how we make decisions and take action.
• Honesty & Transparency: We communicate openly and clearly. Whether it’s sharing wins or owning mistakes, we lead with truth. Transparency keeps our team aligned, builds stronger relationships, and drives better outcomes.
• Empathy : We take time to understand the experiences, challenges, and perspectives of others. By listening with care and responding with compassion, we build a culture where everyone feels seen, heard, and valued.
• Innovation : We challenge assumptions and seek better ways to build. Whether it’s the tools we create or the problems we solve, we stay curious, move fast, and embrace bold ideas that move the construction industry forward.
• Quality : We take pride in our craft. From code to communication, every detail matters. We aim for excellence in everything we deliver—because our work shapes the way others build the world.
• Ownership : We act like owners—because we are. We step up, take accountability, and follow through. No task is too small, no problem is someone else’s. We take initiative and drive results, together.

MISSION :

• To empower construction field teams with the best-in-class scheduling and planning software on the market—reshaping how the world builds.

VISION:

• To become the world’s new standard platform for construction scheduling and planning—replacing the status quo and improving project outcomes across the industry.

Outbuild is seeking a DevSecOps Engineer with deep experience in AWS-based cloud environments, security automation, regulatory compliance, and the design of robust recovery and incident-response procedures. Your work will strengthen our security posture, help us scale operations, and ensure we meet the stringent requirements of our most demanding construction-industry clients.

• Organizational Security
• Lead company-wide SSO implementation (e.g., Okta) and manage secure credential-sharing solutions such as 1Password.
• AWS Security
• Expert-level command of IAM, Security Hub, GuardDuty, Config, CloudTrail, WAF, and related AWS services.
• Harden ECS, EC2, RDS, and S3 resources.
• Design secure networking (VPCs, network ACLs, VPNs, private subnets).
• Enforce encryption, credential rotation, and least-privilege role usage.
• Secure Automation and CI/CD
• Integrate security tooling (Snyk, Trivy, Checkov, SonarQube, Bandit) into GitLab pipelines and future GitHub Actions workflows.
• Perform Infrastructure-as-Code scanning, primarily with Terraform.
• Manage secrets via Vault, AWS Systems Manager Parameter Store, or similar tools.
• Implement artifact signing, dependency validation, and quality gates.
• Drive continuous improvement in pipeline speed and reliability.
• Apply GitOps practices using tools such as Argo CD.
• Version-Control Platforms
• Administer permissions, workflows, and secure pipelines in GitLab.
• Plan and execute a migration to GitHub, including governance and security controls.
• Compliance and Regulatory Readiness
• Prepare technical evidence for SOC 2, ISO 27001, NIST, HIPAA, and similar frameworks.
• Draft and maintain policies covering access management, data retention, encryption, and backups.
• Incident Response and Recovery
• Design and implement recovery procedures for AWS, Cloudflare, and related providers.
• Automate incident-response playbooks and alerting.
• Conduct post-incident retrospectives and drive corrective actions.
• Monitoring and Observability
• Build monitoring strategies for infrastructure and databases using AWS CloudWatch, Datadog, Grafana, Prometheus, or equivalent tools.
• Provide visibility into RDS performance and conduct root-cause analyses.
• Develop proactive alerting and dashboards to detect and resolve issues quickly.
• AWS Cost Optimization
• Review resource usage regularly and recommend cost-saving measures (e.g., Reserved Instances, S3 lifecycle policies).
• Maintain cost dashboards and automated alerts.
• General Platform Monitoring
• Implement and maintain observability with Grafana, Prometheus, OpenTelemetry, and Sentry.

• Advanced English proficiency, both spoken and written.
• Proven experience working in agile environments (Scrum or Kanban).
• Demonstrated autonomy, collaboration, and strong results orientation.

• Prior work in B2B SaaS startups.
• Experience supporting regulated or large enterprise customers.
• Strong cross-functional communication skills with leadership, product, and engineering teams.
• Exposure to AI tools that enhance development, testing, or monitoring workflows.

We take pride in offering an extensive array of benefits to our team:

• Medical, Dental, Vision and Life Insurance options
• Flexible Schedule
• Competitive Compensation
• 25 paid vacation days + 10 floating holidays + 5 sick days per year
• An extra day off for your birthday
• Vacation rollover and time-off flexibility

Base salary: USD 80,000 – 100,000 per year.
Range disclosed to meet U.S. pay-transparency laws for remote roles; final pay within the range depends on your skills, experience, and work location.

Join us at Outbuild to be part of a supportive and close-knit team committed to changing the construction industry for the better!

Fully Remote

Candidates can reside anywhere in the world.