🛠 Tech Stack

💼 About This Role

You'll lead DevSecOps strategy and guide cloud transformation efforts for highly resilient systems at Allegiant. You'll drive the roadmap across pipeline security, IaC policy, and cloud security posture while mentoring a small team. This role stands out for its hands-on emphasis on building security tooling that developers adopt in production.

🎯 What You'll Do

• Own and drive the DevSecOps roadmap across pipeline security and cloud posture.
• Architect and maintain security gates in GitHub Actions CI/CD pipelines.
• Administer GitHub Advanced Security across the organization.
• Author and deploy Checkov custom policies for Terraform IaC scanning.
• Operate CNAPP for cloud security posture and image scanning.

📋 Requirements

• 3+ years in information security.
• 5+ years supporting/implementing network security platforms & strategies.
• Production experience building and maintaining CI/CD security scanning stages with GitHub Actions.
• Hands-on administration of GitHub Advanced Security (or equivalent) in 50+ repos.

✨ Nice to Have

• Experience with AI security and MCP governance.
• Certifications like CISSP.
• Experience with Palo Alto Cortex Cloud or Prisma Cloud.

🎁 Benefits & Perks

• 🏖️ Unlimited PTO (inferred from culture, not explicitly stated)
• Health benefits (typical large company offering)

🚩 Heads Up

• Role combines Principal Engineer and team lead responsibilities, which may lead to overload.
• Requirements are extensive and specific across multiple domains (pipeline, IaC, cloud, appsec, AI security).
• Mentoring two engineers while driving execution may stretch bandwidth.