Principal Cloud DevSecOps Engineer

The Regeneron Genetics Center (RGC) IT team is looking for a passionate Principal Cloud DevSecOps Engineer with strong technical ability, communication, and collaboration skills. As the Principal Cloud DevSecOps Engineer, you will be responsible for the design and implementation of cloud infrastructure, automation, security controls, and compliance processes on AWS, supporting data, HPC, AI, and microservice platforms used by research scientists and bioinformaticians. You will work hands-on to build and implement cloud DevSecOps solutions, embed security into system design, and provide technical support and guidance to end users and internal teams. You will also provide technical mentorship for Lead and Senior DevSecOps engineers and coordinate with InfoSec, Privacy, and internal IT teams to ensure security, scalability, and reliability of the RGC cloud platform.

In this role, a typical day might include the following:

• Design and implement infrastructure-as-code, automation scripts, and CI/CD pipelines supporting data, HPC, AI, and microservice platforms on AWS

• Embed security controls into system design and implementation — including IAM policies, network segmentation, secrets management, and compliance validation pipelines

• Design and implement tools to automate operational processes across RGC’s cloud and systems engineering platforms

• Support all audit related activities including providing evidence and remediation of findings for RGC’s cloud platform

• Develop and implement continuous delivery systems and CI/CD methodologies for RGC’s systems engineering platforms using both AWS services and GitHub Actions, ARC self-hosted runners on EKS, and SAST/DAST integration.

• Recommend and deploy monitoring, metrics, and logging systems on RGC’s cloud engineering platforms

• Identify and implement opportunities to build systems that are highly available, scalable, and self-healing

• Develop SOPs and configure cloud services to support compliance validation

• Provide technical support, training, and documentation to end users and research teams using RGC’s data, HPC, AI, and microservice platforms

• Serve as a technical point of contact for user-facing issues related to cloud platform, DevOps pipelines, security services, and solving problems in collaboration with internal IT teams

• Stay on top of the latest advances in cloud platforms and related security & compliance controls

• Provide technical guidance and mentorship for Lead and Senior DevSecOps engineers

• Interact with InfoSec and Privacy teams to define and iterate on security requirements, and implement them across the platform

This job might be for you if:

• You have an eye for detail and pride yourself on the quality of your work. Operational excellence and secure-by-design thinking matter more than just finishing the tasks.

• You thrive in a fast-paced environment working across data, HPC, AI, and microservice platforms, and enjoy being a technical resource for the teams that depend on them.

• You work on current problems while thinking of future solutions, and take satisfaction in both building the right thing and supporting the people who use it.

To be considered for the Principal Cloud DevSecOps Engineer, you must have:

• Bachelor's Degree in Computer Science, or related field.

• 8+ years of in-depth AWS services experience and relevant security certifications.

• Hands-on experience designing and implementing cloud infrastructure automation, CI/CD pipelines, infrastructure-as-code, and security controls.

• Solid understanding of cloud security posture including IAM, network segmentation, secrets management, compliance validation, and security-by-design principles.

• Experience supporting data, HPC, AI, or microservice platforms in a technical or user-facing capacity. Knowledge of core AWS services EC2, EBS, S3, ELB, RDS, EKS, and IAM. Tangible experience with Linux administration and automation of security controls and compliance validation.

• Experience with monitoring tools like Splunk, Grafana, Prometheus. AWS and other related certifications are a plus.

Level commensurate on experience and qualifications. Regeneron is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability status, protected veteran status, or any other characteristic protected by law.