Loading...

DevSecOps Engineer

  • Full Time
  • Toronto
  • QR code — scan to open this job listing on your phone

Maxima at a glance

SEC filings mentioning "Maxima": 562 · SIC industry: Services-Personal Servicessearch EDGAR

Maxima

About Us

At Maxima, we’re eliminating the pain of enterprise accounting through powerful integrations, intuitive design, and AI-driven automation. By consolidating processes into a single, easy-to-use platform and automating repetitive tasks, we free accounting teams to focus on strategic, high-impact work—achieving more with fewer resources.

Our team is led by top engineers and finance professionals from companies like Robinhood, Bolt, EY, Facebook, Twitter, Netflix, Amazon, Google, Airbnb, Rubrik, and more. Together, we’re using our extensive industry experience to transform the way businesses manage their finances.

Maxima is backed by leading Silicon Valley investors. We raised the largest seed round in our category, with support from top-tier VCs such as Kleiner Perkins and Audacious Ventures. This funding has allowed us to launch a fully operational product and onboard several major customers.

Your Role at Maxima

  • Implement and manage DevSecOps practices across the entire Software Development Lifecycle (SDLC), ensuring a “shift-left” approach to security.

  • Comfortable with Kubernetes and other container orchestration platforms

  • Design and harden CI/CD pipelines (e.g., GitHub Actions) by implementing minimal permissions and leveraging OIDC with Workload Identity Federation for cloud deployments.

  • Integrate and enforce security checks, including SAST, dependency scanning, and secret scanning (e.g., using tools like Trufflehog or GitGuardian), to fail builds on high-severity issues.

  • Secure cloud infrastructure (GCP) by implementing the principle of least privilege for IAM, configuring VPC firewalls to restrict traffic, and using Google Secret Manager.

  • Manage encryption and key rotation using Cloud KMS, ensuring all secrets are handled securely and not stored in code or plaintext.

  • Oversee container and artifact hardening, including using multi-stage builds, scanning images for vulnerabilities, and signing artifacts (e.g., Cosign) for supply chain integrity.

  • Ensure application code follows secure coding best practices, including input validation, output encoding to prevent XSS, and secure authentication/session management via Descope integration.

  • Monitor CI/CD pipelines and production environments (using GCP and Datadog) for anomalies, security-relevant events, and audit logs to meet compliance requirements.

  • Maintain documentation and controls necessary to align with compliance frameworks, including SOC 2, SOC 1, and ISO 42001 for AI governance.

  • Assist in developer infrastructure work, including deployment automation and internal tooling, in a full-stack environment.

Your Qualifications

  • 4+ years of experience in DevSecOps, Security Engineering, or a related role focused on CI/CD pipeline security.

  • Bachelor’s degree in any engineering discipline; Computer Science is preferred but not mandatory.

  • Proven experience securing cloud environments, preferably Google Cloud Platform (GCP), with familiarity in IAM, Secret Manager, VPC controls, and Cloud KMS.

  • Strong practical experience with hardening continuous integration/continuous deployment (CI/CD) systems (e.g., GitHub Actions, Blacksmith, or similar).

  • Proficiency in security practices for application development (SAST, DAST, secret scanning) and a deep understanding of common security anti-patterns (e.g., hard-coded secrets, insufficient input validation).

  • Proficient in languages like Golang, Typescripts, Python, or similar programming languages used for automation and development.

  • Familiarity with compliance standards like SOC 2, PCI DSS, or ISO 42001 and experience generating evidence for auditors.

  • Can handle the high intensity and fast pace of a startup environment.

  • Strong verbal and written communication skills.

Maxima is an equal opportunity employer. We do not discriminate based on race, color, ethnicity, ancestry, national origin, religion, sex, gender, gender identity, gender expression, sexual orientation, age, disability, veteran status, genetic information, marital status or any legally protected status.

To apply for this job please visit jobs.ashbyhq.com.

Working in Toronto, Ontario

Weather right now in Toronto, Ontario: checking… · Local time: · Air quality: · Daylight: · UV index: · Wind:

Toronto is the most populous city in Canada and the capital city of the Canadian province of Ontario. It is located on a harbour at the northwestern shore of Lake Ontario. The city is the fourth-most populous city in North America, behind Mexico City, New York City, and Los Angeles, with a census population of 2,794,356 as of 2021. The Greater Toronto Area (GTA) is constituted of Toronto proper and four surrounding regions, Peel, York, Durham, and Halton, and has a population of 6,712,341, while the Toronto census metropolitan area (CMA), with a somewhat different definition, has a population

Ontario is the southernmost province of Canada. Located in Central Canada, Ontario is the country's most populous province. As of the 2021 Canadian census, it is home to over 14 million people, which is 38.5% of the country's population. Ontario is the second-largest province by total area and the fourth-largest jurisdiction of all the Canadian provinces and territories. It is home to the nation's

  • Elevation 99m (325 ft)

Source: Wikipedia (state)

Job details above are provided by the employer/source. The sections on this page are compiled from public data sources with AI assistance.

Accommodations: if you need a workplace accommodation to apply for or perform this job, see ADA.gov or EEOC.gov for guidance on your rights and how to request one.

Add application deadline to calendar

Keep exploring on Get A Job.ai

Not quite the right fit? Your next opportunity is a click away.

Hiring instead? Post a job and reach candidates searching right now.