Q-Free is the prime mover in innovative, safe, and sustainable transportation management. We work to do two things: improve mobility and make the world better by improving traffic flow, road safety, and air quality in communities all over the world.

We are seeking a skilled and proactive DevSecOps Release Engineer to join our dynamic team. In this pivotal role, you will integrate security best practices into our development and operations pipelines, ensuring that our applications are secure, reliable, and delivered efficiently. You’ll serve as the bridge between development, security, and operations—managing release workflows, overseeing vulnerability remediation, and maintaining robust CI/CD pipeline security.

Responsibilities

• Integrate and automate security testing, SBOM (Software Bill of Materials) generation, and vulnerability reporting for rapid feedback loops.
• Maintain and update third-party dependencies, libraries, and container images to reduce security risks.
• Coordinate branching strategies and release management, including hotfix creation and deployments.
• Troubleshoot build failures, dependency conflicts, and runtime issues related to updated software.
• Conduct security assessments and audits to identify application and infrastructure vulnerabilities.
• Collaborate with development, operations, and InfoSec teams to implement secure coding and pipeline best practices.
• Support compliance and audit requirements through proper logging, monitoring, SBOM documentation, and vulnerability reporting.
• Respond to security incidents, coordinate remediation activities, and support damage containment during breaches.

Qualifications

• 3+ years of experience in DevOps, Release Engineering, Cloud Engineering, and Application Security.
• Proficiency in programming languages such as Python, Java, JavaScript, Bash, or PowerShell.
• Experience with Docker, Kubernetes, Helm, Snyk, Bitbucket, Github, and CI/CD tools like Jenkins, Gitlab, or CircleCI.
• Strong understanding of the Software Development Lifecycle, especially code branching for hotfixes and release delivery.
• Familiarity with cloud service providers (AWS, Azure, Google Cloud) and their security measures.
• Hands-on experience with Infrastructure as Code (Terraform, CloudFormation, etc.).
• Knowledge of security frameworks and standards (OWASP, NIST, CIS Benchmarks).
• Excellent communication and collaboration skills.

Education & Certifications

• Bachelor’s degree in Computer Science or a related field, or equivalent work experience.
• Certifications such as Certified DevSecOps Professional (CDP) or Certified Secure Software Lifecycle Professional (CSSLP) are a plus.

Q-Free America ensures our employees are happy and healthy. Our dynamic and comprehensive benefits package allows our employees to take care of themselves and their families. Our benefits package includes, but is not limited to, the following: health, vision, dental, 401(k) plan, EAP, and flexible benefits. Additionally, we offer company-paid life, short-term, and long-term disability insurance.

For more information, visit our website at www.q-free.com.

We thank all applicants for their interest; however, we will contact only qualified candidates.

Q-Free proudly celebrates diversity in our employees.

EOE/AA/M/F/Veteran/Disabled Drug-Free Workplace