Job Description
Senior Development Security Operations Engineer American Tower - 3.7 Cary, NC Job Details 1 day ago Benefits Employee stock purchase plan Paid holidays Health insurance 401(k) Paid time off Parental leave Employee assistance program Qualifications Version control DevSecOps Practices Infrastructure as Code (IaC) DevOps Security engineering Automating deployment processes Task prioritization Security policy implementation Cloud Native Design Scalability Cross-functional collaboration Cross-functional communication SDLC Full Job Description The Team We are seeking a Senior Development Security Operations Engineer to join American Tower's Information Security organization. The Information Security team is responsible for protecting the confidentiality, integrity, and availability of American Tower's data and systems in our core systems and platforms. As a Senior Development Security Operations Engineer, your daily responsibilities will focus on embedding security controls into software delivery pipelines, code repositories, and cloud-native platforms. You will play a critical role in enabling secure software development at scale by implementing automated guardrails, integrating security tools into developer workflows, and ensuring continuous enforcement of security requirements. Working in close partnership with Application, Cybersecurity Engineering, and Governance Risk & Compliance teams, your role will involve translating security requirements into scalable, automated controls across Continuous Integration / Continuous Delivery (CI/CD) pipelines and infrastructure. You will help ensure that security is enforced consistently through policy-as-code, pipeline automation, and platform engineering practices. As a senior technical contributor, you will drive the adoption of secure-by-default engineering patterns, balancing strong security controls with developer experience and delivery velocity. American Tower is a global digital infrastructure company serving customers through tower sites and other real estate solutions that support connectivity and opportunity, focused on achieving our vision of Building a More Connected World. Our success is rooted in the potential of our people and the power of local teams at our offices and sites across 25 countries. We are one of the largest global Real Estate Investment Trusts (REITs) and a publicly traded (
NYSE:
AMT), Fortune 500 Company headquartered in Boston, Massachusetts. The next decade will be an exciting time as we evolve our infrastructure to meet tomorrow's needs and position our people to elevate their impact, their potential, and our shared success. Come grow your career with us! For more information about how American Tower is building a more connected world, visit americantower.com American Tower is proud to be an equal opportunity employer and will not discriminate against an applicant or employee based on age, sex, sexual orientation, gender identity, race, color, creed, religion, national origin or ancestry, citizenship, marital status, familial status, disability, military or veteran status, genetic information, pregnancy, reproductive decisions, or any other characteristic protected under applicable law. American Tower is committed to fair and equitable compensation practices. Placement within the salary range is based on a variety of factors, including relevant experience, skills, certifications, job level, and location. For U.S.-based candidates only, please see the base salary range for this position listed below. This position is also eligible for annual bonus, and annual equity award and participation in the Employee Stock Purchase Plan (ESPP). For candidates outside of the U.S., salary and benefits are based upon local market practice. American Tower also offers a comprehensive benefits package, which includes healthcare coverage, a 401(k) savings plan, paid time off, company holidays, sick leave, parental leave, and access to an Employee Assistance Program focused on mental and financial wellness, please click here to learn more. What You Need to Succeed 7+ years of experience in DevSecOps, security engineering, or platform engineering, with strong hands-on experience implementing CI/CD and automation solutions. Strong hands-on experience with code repository platforms (e.g., GitHub, GitLab, Azure DevOps), including implementation of advanced security controls and governance. Deep experience with cloud-native technologies, including containers (Docker), orchestration platforms (Kubernetes), and infrastructure-as-code tools such as Terraform, Azure Resource Manager (ARM), and AWS CloudFormation. Strong understanding of software supply chain security risks and controls, including dependency management and Software Bill of Materials (SBOM) practices. Experience implementing policy-as-code frameworks using tools such as Azure Policy, AWS Config, Open Policy Agent (OPA), or similar technologies. Proficiency in scripting and automation (e.g., Python, PowerShell, Bash) and DevOps tooling (e.g., Jenkins, GitHub Actions, Azure Pipelines). Strong understanding of the Secure Development Lifecycle (SDLC) and the ability to operationalize controls within engineering environments. Ability to collaborate effectively with Application, Cybersecurity, and business teams to implement scalable security solutions. Strong written and oral communication skills, including the ability to present ideas and suggestions clearly and effectively. Ability to work with different functional groups and levels of employees to effectively and professionally achieve results. Strong organizational skills; ability to accomplish multiple tasks within the agreed upon timeframes through effective prioritization of duties and functions in a fast-paced environment. Approximately 5% travel may be required in support of the position's responsibilities. What You Can Offer Us Design, implement, and optimize secure Continuous Integration / Continuous Delivery (CI/CD) pipelines, embedding automated security controls such as: Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), Secrets scanning, Infrastructure as Code (IaC) scanning, and Container image scanning Implement and enforce policy-as-code frameworks, ensuring that security requirements are version-controlled, machine-readable, and automatically enforced across build, deployment, and runtime environments. Lead the implementation of code repository security controls (e.g., Bitbucket, GitHub, GitLab, Azure DevOps), including branch protections, access controls, commit integrity checks, and prevention of unauthorized or insecure code changes. Develop and maintain security guardrails for developer platforms, ensuring secure configurations for pipelines, repositories, and development environments. Integrate security controls into cloud-native environments, including container platforms (e.g., Kubernetes) and infrastructure-as-code provisioning tools such as Terraform, Azure Resource Manager (ARM), and AWS CloudFormation. Implement secrets management solutions, ensuring secure storage, rotation, and usage of credentials, Application Programming Interface (API) keys, and tokens across applications and pipelines. Automate enforcement of secure development standards by embedding security checks directly into engineering workflows and deployment processes. Partner with Application Security to translate requirements into technical controls and ensure consistent enforcement across all application environments. Design and implement controls to secure the software supply chain, including dependency management, Software Bill of Materials (SBOM) generation, and protection against malicious or vulnerable third-party components. Build and maintain monitoring, logging, and alerting capabilities for pipeline and application security events to enable rapid detection and response. Drive continuous improvement of DevSecOps capabilities, including automation, standardization, and performance optimization of security tooling. Provide technical leadership and mentorship to engineers on DevSecOps practices, automation, and secure platform engineering. Other duties as assigned.
