Staff DevSecOps Engineer

You will:

• Perform Security Audits: Conduct security assessments of applications, infrastructure, and networks to identify vulnerabilities and risks, recommending and implementing remediation strategies.
• Administer and Optimize Akamai WAF: Configure, manage, and optimize Akamai Web Application Firewall (WAF) policies, ensuring robust protection against threats while maintaining high performance and availability.
• Code and Application Security: Utilize industry-leading code scanning and application security tools to identify vulnerabilities early in the development lifecycle and integrate security practices into CI/CD pipelines.
• Cloud Security Hardening: Collaborate with cloud engineering and platform teams to ensure secure cloud environments (AWS, Azure, GCP), applying best practices for security configuration, hardening, and compliance.
• Incident Response and Management: Lead or participate in security incident response efforts, rapidly addressing incidents and proactively implementing improvements to minimize future risks.
• Explore and Implement AI Security Practices: Leverage familiarity with AI technologies to explore opportunities for enhancing security posture, threat detection, and proactive security measures.
• Mentorship and Leadership (Growth Opportunity): Mentor junior team members, providing technical guidance, professional development, and potentially stepping into a team leadership role.

You have:

• Bachelor's degree in Computer Science, Information Security, or related field, or equivalent work experience.
• 6+ years of experience in DevSecOps, application security, or cloud security roles.
• Hands-on experience administering Akamai WAF or similar web application firewall platforms.
• Strong knowledge of networking, security principles, and cloud infrastructure.
• Proficiency with security tools such as IDS/IPS, SIEM, vulnerability scanning, and penetration testing.
• Familiarity with scripting/automation (Python, Shell, PowerShell).
• Understanding or experience with AI technologies in security contexts.
• Excellent communication and problem-solving skills, capable of independently troubleshooting complex issues.

We prefer:

• Relevant certifications (AWS Security Specialty, CISSP, SSCP, CISM, CCSP, CEH).
• Master's degree in Computer Science or Information Security.
• Experience integrating security practices into DevOps and CI/CD workflows.
• Expertise with Docker, Kubernetes, and container security.
• Previous leadership experience or demonstrated potential to lead small technical teams, set strategic goals, and drive organizational improvements.

Salary Range: $145,200 - $181,900

Benefits: Employees (and their eligible family members) may enroll in the following types of insurance coverage: medical, dental, vision, legal, and accidental death and dismemberment, as well as FSA/HSA (depending on enrolled medical plan). Yum! also provides short-term disability, long-term disability, and life insurance. Employees may enroll in our 401(k) plan. Yum! provides 4 weeks of vacation, paid sick leave, 10 paid holidays, a floating day off and 2 paid days for volunteer time each calendar year. To learn more about working at Yum! -Click here. 

At Yum!, one of our core values is to Believe in ALL People. This means seeing the value in everyone and unlocking their full potential to be their best self. YUM! Brands, Inc. (including its subsidiaries Yum Restaurant Services Group, LLC (“YRSG”) and Yum Connect, LLC (“Yum Digital and Technology”)(collectively, “Yum”) is proud to be an equal opportunity employer and is committed to equity, inclusion, and belonging for all dimensions of diversity.  We do not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other protected characteristic. Yum! is committed to working with and providing reasonable accommodation to applicants with disabilities or special needs.

US Job Seekers/Employees - Click here to view the “Know Your Rights” poster and supplement and the Pay Transparency Policy Statement.

This posting will be open for a minimum of two weeks. Applications will be accepted on an ongoing basis until a candidate is selected.

Beware of fake job postings using Yum! and/or our brand logos -- KFC, Pizza Hut, Taco Bell and Habit Burger & Grill -- on fraudulent sites. Yum! Brands only posts jobs on official career pages and never asks for money during onboarding. Avoid unsolicited contacts via Telegram, WhatsApp or similar social apps.