Regions Bank Logo

Regions Bank

Cloud DevSecOps Engineer

Posted 2 Days Ago
In-Office or Remote
Hiring Remotely in Birmingham, AL
109K-143K Annually
Senior level
In-Office or Remote
Hiring Remotely in Birmingham, AL
109K-143K Annually
Senior level
Design, build, and maintain secure, fully automated cloud CI/CD pipelines and immutable infrastructure using IaC (Terraform, Ansible, Packer). Integrate security tooling (SAST/DAST/SCA, IaC scanning, secrets detection), automate vulnerability remediation, partner with engineering and security teams, and drive AI-enabled security automation and metrics to reduce organizational cyber exposure.
The summary above was generated by AI

Thank you for your interest in a career at Regions. At Regions, we believe associates deserve more than just a job. We believe in offering performance-driven individuals a place where they can build a career --- a place to expect more opportunities. If you are focused on results, dedicated to quality, strength and integrity, and possess the drive to succeed, then we are your employer of choice.

Regions is dedicated to taking appropriate steps to safeguard and protect private and personally identifiable information you submit. The information that you submit will be collected and reviewed by associates, consultants, and vendors of Regions in order to evaluate your qualifications and experience for job opportunities and will not be used for marketing purposes, sold, or shared outside of Regions unless required by law. Such information will be stored in accordance with regulatory requirements and in conjunction with Regions’ Retention Schedule for a minimum of three years. You may review, modify, or update your information by visiting and logging into the careers section of the system.

Job Description:

At Regions, the Cloud DevSecOps Engineer contributes to the advancement of cloud strategy. The primary focus of this role includes developing, communicating, and implementing robust and secure cloud continuous integration and continuous delivery (CI/CD) pipelines. This role works closely with stakeholders to create fully automated pipelines which support current DevSecOps best practices.

Primary Responsibilities

  • Assists with releasing candidate CI/CD pipelines as a mechanism to communicate the states and steps necessary to determine a release candidate for each application and service
  • Designs and develops fully autonomous CI/CD pipelines which facilitate cloud deployments which includes automation of all infrastructure, services and application build and deployment
  • Ensures that all parts of the pipeline follow good software engineering practices to include automated tests and infrastructure tests
  • Builds tools which reduce errors and improve our overall customer experiences
  • Assists in troubleshooting of production issues and ensure pipeline and infrastructure produces clear documentation and metrics which enables Root Cause Analysis
  • Develops and tests – Ansible Playbooks, Terraform Scripts, Packer Scripts and establish immutable infrastructure such that patches are an artifact of the past
  • Works with Enterprise Architecture, Information Security (InfoSec), Software Delivery, and Quality Assurance to enable the organization to move to the cloud using complete automation
  • Ensures compliance with risk management programs, rules and regulations, and cybersecurity practices; identifies opportunities for and supports process improvements; applies disciplined change management practices

This position is exempt from timekeeping requirements under the Fair Labor Standards Act and is not eligible for overtime pay.

Requirements

  • High School Diploma or GED and six (6) years of related post-secondary education and/or experience in Information Security or Information Technology

Preferences

  • Two (2) years of relevant DevSecOps experience
  • AWS DevOps certification or Azure DevOps certification
  • Experience in building / deploying cloud native applications – OpenShift, Azure Kubernetes Service (AKS)
  • Experience with interfacing with secrets management solutions like Hashicorp Vault
  • Familiar with implementing Chaos engineering principles in the pipeline to determine weak links and suggest solutions.
  • Familiar with testing tools used to facilitate automation and integration of the tools into CI/CD pipelines

Skills and Competencies

  • Ability to interpret and ensure compliance with applicable rules, regulations, and industry guidance
  • Excellent knowledge of Cloud infrastructure, networking, services, and cloud architectural patterns; specifically, compute using virtual machines, managed infrastructure, containers, serverless, as well as database services, security services, and application services
  • Proficient in python programming language
  • Understanding of Shift Left principles and facilitation technologies
  • Working Knowledge of Jenkins, Azure DevOps, Ansible, Terraform, Packer, Git, ServiceNow a big plus

The Cloud DevSecOps Engineer will drive innovation through the adoption of AI-enabled security capabilities, including LLM-integrated workflows, intelligent automation, and AI-assisted vulnerability remediation, to improve the effectiveness and efficiency of the Exposure Management program. In this role, you will:

  • Build the integration of security practices, controls, and automated remediation capabilities into CI/CD pipelines, infrastructure-as-code (IaC), and cloud-native development processes to reduce organizational cyber exposure.
  • Partner with Application Development, Platform Engineering, Cloud Engineering, and Security teams to identify, prioritize, and remediate vulnerabilities across applications, containers, cloud services, and code repositories.
  • Drive the adoption and optimization of security tooling, including SAST, DAST, SCA, IaC scanning, secrets detection, container security, and software supply chain security solutions.
  • Develop and maintain risk-based remediation workflows that align vulnerability findings with asset criticality, threat intelligence, exploitability, and business impact.
  • Support the organization's Exposure Management program by establishing security guardrails, preventative controls, and continuous monitoring capabilities that reduce attack surface and security risk.
  • Build security automation and orchestration capabilities to improve vulnerability detection and remediation, policy enforcement, configuration management, and developer self-service security functions.
  • Define and report on key performance indicators (KPIs) and metrics related to application security, remediation effectiveness, security debt reduction, and secure development maturity.
  • Serve as a security advocate for engineering teams, promoting secure-by-design principles, developer education, and a culture of shared responsibility for cybersecurity risk management.
This position is currently offsite, preferably close to a Regions office within our retail branch footprint (click here to see our locations). Associates will work from their home primarily and may be expected to go on site for meetings or other events as needed.Regions will not sponsor applicants for work visas for this position at this time. Applicants for this position must currently be authorized to work in the United States on a full-time basis.

Position Type

Full time

Compensation Details

Pay ranges are job specific and are provided as a point-of-market reference for compensation decisions. Other factors which directly impact pay for individual associates include: experience, skills, knowledge, contribution, job location and, most importantly, performance in the job role. As these factors vary by individuals, pay will also vary among individual associates within the same job.

The target information listed below is based on the Metropolitan Statistical Area Market Range for where the position is located and level of the position.

Job Range Target:

Minimum:

$109,086.45 USD

Median:

$142,750.00 USD

Incentive Pay Plans:

This job is not incentive eligible.

Benefits Information

Regions offers a benefits package that is flexible, comprehensive and recognizes that "one size does not fit all" for benefits-eligible associates. Listed below is a synopsis of the benefits offered by Regions for informational purposes, which is not intended to be a complete summary of plan terms and conditions.

  • Paid Vacation/Sick Time

  • 401K with Company Match

  • Medical, Dental and Vision Benefits

  • Disability Benefits

  • Health Savings Account

  • Flexible Spending Account

  • Life Insurance

  • Parental Leave

  • Employee Assistance Program

  • Associate Volunteer Program

Please note, benefits and plans may be changed, amended, or terminated with respect to all or any class of associate at any time. To learn more about Regions’ benefits, please click or copy the link below to your browser.

https://www.regions.com/about-regions/welcome-portal/benefits

Location DetailsRiverchase Operations Center

Location:Hoover, Alabama

Equal Opportunity Employer/including Disabled/Veterans

Job applications at Regions are accepted electronically through our career site for a minimum of five business days from the date of posting. Job postings for higher-volume positions may remain active for longer than the minimum period due to business need and may be closed at any time thereafter at the discretion of the company.

Similar Jobs

Yesterday
In-Office or Remote
109K-143K Annually
Senior level
109K-143K Annually
Senior level
Fintech
Design, build, and operate secure cloud CI/CD pipelines and automation for infrastructure and applications. Develop Ansible, Terraform, and Packer artifacts, integrate automated tests, enable DevSecOps practices with InfoSec and architecture teams, troubleshoot production pipeline issues, and ensure compliance, documentation, and metrics for root cause analysis.
Top Skills: AnsibleAWSAzureAzure DevopsAzure Kubernetes Service (Aks)Ci/CdGitHarnessHashicorp VaultJenkinsKubernetesOpenshiftPackerPythonServicenowTerraform
10 Hours Ago
Remote or Hybrid
USA
38K-88K Annually
Mid level
38K-88K Annually
Mid level
Machine Learning • Payments • Security • Software • Financial Services
Provide first-line remote and on-site technology support for employees and contractors, troubleshoot hardware/software issues, use help-desk tools, escalate to higher-level teams, and ensure customer-focused resolution following PNC policies.
12 Hours Ago
Remote or Hybrid
United States
117K-158K Annually
Senior level
117K-158K Annually
Senior level
Cloud • Fintech • Software • Business Intelligence • Consulting • Financial Services
Lead transaction advisory engagements by performing financial analysis and modeling, evaluating deal structures and valuations, managing multiple projects, liaising with clients and cross-functional teams, preparing clear reports and presentations, and reviewing junior team members' work to ensure accuracy and high-quality deliverables.
Top Skills: ExcelFinancial Databases

What you need to know about the NYC Tech Scene

As the undisputed financial capital of the world, New York City is an epicenter of startup funding activity. The city has a thriving fintech scene and is a major player in verticals ranging from AI to biotech, cybersecurity and digital media. It also has universities like NYU, Columbia and Cornell Tech attracting students and researchers from across the globe, providing the ecosystem with a constant influx of world-class talent. And its East Coast location and three international airports make it a perfect spot for European companies establishing a foothold in the United States.

Key Facts About NYC Tech

  • Number of Tech Workers: 549,200; 6% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Capgemini, Bloomberg, IBM, Spotify
  • Key Industries: Artificial intelligence, Fintech
  • Funding Landscape: $25.5 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Greycroft, Thrive Capital, Union Square Ventures, FirstMark Capital, Tiger Global Management, Tribeca Venture Partners, Insight Partners, Two Sigma Ventures
  • Research Centers and Universities: Columbia University, New York University, Fordham University, CUNY, AI Now Institute, Flatiron Institute, C.N. Yang Institute for Theoretical Physics, NASA Space Radiation Laboratory

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account