Lead DevSecOps Engineer

San Francisco or Remote /
Engineering – Engineering /
2021 was an amazing year for Doppler. So far we have helped over 10,000 startups and enterprises manage their secrets at scale, more than tripled our team size, 14x our revenue, and raised a round from Google Ventures and Sequoia. This year we are getting far more ambitious by setting even higher product, growth, sales, and headcount goals.

Doppler's mission is to make it easy and secure for developers of every experience level and teams of any size to manage their app configuration and secrets. But hasn't this been done?

Developers tend to be either struggling with the manual management of .env files, or wrestling with an overly complex secrets manager that's not built for software development. Doppler is changing that by making app configuration and secrets management easy, intuitive, and scalable. It's the universal secrets platform built by developers for developers.

Our team is entrepreneurial, with a bias for action. We never back down from a spirited debate and believe we are all responsible for exploring the hard questions. We value self-awareness and meaningful impact. We are open to unconventional approaches and have learned not to judge a book by its cover. Your time is your most valuable resource, so you set your hours. We use Slack to communicate and default to zero meetings. We aim to document everything. We also recommend you invest your time in 10% compounding time.

We are looking for a Senior DevSecOps Engineer with deep expertise in securing cloud infrastructure, Kubernetes clusters, and large web applications, as well as in building and optimizing CI/CD workflows. You will lead infrastructure security initiatives, advise technical projects across the company, and inform our infrastructure roadmap. You will also work very closely with the engineering and AppSec teams.


    • 5+ years of experience operating in a DevSecOps capacity, or similar role
    • 2+ years of experience securing/hardening Kubernetes clusters
    • Deep expertise in Kubernetes best practices, including service meshes, PSPs, and OPAs
    • Have built, optimized, and maintained CI/CD workflows
    • Experience securing public cloud deployments and infrastructure
    • Understanding of Linux systems primitives, and employing them in a security context


    • Prior experience using GCP, including Cloud Build
    • Experience building and debugging GitHub Actions for CI/CD workflows
    • Experience on a security engineering team, ideally as a technical lead
    • Previously worked on an encryption-as-a-service product
    • Have patched/remediated vulnerabilities at the OS/infrastructure level
    • A history of contributing to our community through code, documentation, mentoring, teaching, speaking, and/or organizing


    • Equity at an early-stage fast-growing startup
    • Premium health insurance (medical, dental, vision)
    • Guilt Free Unlimited PTO
    • Upward Mobility
    • Commuter & Ride Share
    • Relocation Bonus
    • Learning and Development Stipend
    • Wealth Advisor
    • Genuine Friendships
    • 401k
    • Pregnancy & Family Leave
    • Fertility Treatments
    • Equal Compensation (regardless of gender or race)

We've built a great product our customers love. Our churn is low, and active usage continues to rise. We just need to amplify our reach to educate the market that secrets management can be fast, secure, and affordable for teams and organizations of any size. And most importantly, we need to continue encouraging Developers to stop adhering to archaic insecure standards such as manually managing .env file formats.

Are you passionate about developer-focused products and ready to join an amazing team? Then we want to hear from you!