Senior DevSecOps Engineer

To be considered for this position please email your CV/Resume to

About Us

Charles & Colvard (Nasdaq: CTHR) believes luxury can be beautiful and conscientious. As an e-commerce-driven business, the Company uses innovative technology and sustainable practices to lead a revolution in the jewelry industry. As the original pioneer of lab-created moissanite, a rare gemstone formed from silicon carbide, Charles & Colvard delivers a brilliant product at a revolutionary value that meets the needs of today’s discerning customer. Jewelry consumers seek Charles & Colvard products because of their exceptional quality as well as their environmental and social responsibility. Charles & Colvard was founded in 1995 and is based in the Research Triangle Park, North Carolina. For more information, please visit

Position Summary:

The Sr. DevSecOps Engineer leads a secure, scalable, robust, high-performing, and high-available infrastructure to support uninterrupted business operations for seamless continuity, full availability, and consistency. They will instill a culture of “every day is a holiday” across the board to ensure application uptime and performance to continually deliver an excellent customer experience.

This individual will partner with IT development and operational teams to define, implement, and drive best practices in DevSecOps technologies and philosophies. They will develop tools and processes that enable our engineering teams to deliver continuously, deploying multiple times a day, in a seamless and coordinated effort. Additionally, they will promote a strong reliability culture by partnering with software engineering, security, and architecture to solve operational problems.

Essential Duties and Responsibilities

  • Manage and implement CI/CD/CT tools and pipeline as a partner to development and QA teams
  • Be an advocate for security and performance standards in the organization
  • Create mechanisms/architectures that enable fault tolerance and rapid recovery
  • Collaborate with team members to improve the company’s engineering tools, systems and procedures, and data security
  • Conduct systems tests for security, performance, and availability
  • Oversee/manage code deployments in all environments
  • Develop the tools and automation to effectively manage the analysis and approval of new code through security and performance gates
  • Develop and maintain design, process and troubleshooting documentation
  • Serve as an advocate for quality practices including the development of automated testing to improve business processes
  • Examine SIEM/SOC logs, and notifications working with managed security partners on an ongoing basis to address security, performance, and capacity issues proactively
  • Identify trending gaps or issues in the day-to-day performance of website applications, hosted components and third-party vendors by active monitoring, alerting, reporting, and process reviews
  • Design with concepts of Infrastructure as Code and immutable infrastructure architecture


  • 8+ years of experience in managing a Linux based infrastructure
  • 8+ years of experience with databases technologies e.g. MSSQL, MySQL, Postgres, MariaDB, MongoDB, Neo4j, Redis, Elasticsearch
  • 8+ years of experience with cloud infrastructure, AWS, microservices, container design/architecture, and best-practice methodologies
  • 8+ years of experience with modern software development, infrastructure development and operations e.g. HTML5, CSS, XML, REST, JavaScript, Angular, ReactJS, Vue.js, CI/CD/CT, Python, JavaScript, Node.js, Java, Go, Perl, Bash Script, Git, NPM, Maven, Chef, Puppet, Ansible, AWS CloudFormation, Terraform, Jenkins, Selenium, ELK, Docker and Kubernetes
  • 8+ years of enterprise e-commerce platform experience e.g. Magento Enterprise 2.x, Demandware (SFCC), Znode, Oracle, SAP Hybris, NetSuite, etc.
  • Experience with AWS (e.g. Route 53, CloudFront, ECS, IAM, NACL, Security Groups, CloudWatch, CloudFormation, IoT, SNS, Kinesis, SQS, EC2, ELB/ALB, EDS, VPC, VPN, VPC, Subnets, S3)
  • Experience in Agile, Scrum, Waterfall, and Kanban workflow methodologies
  • Experience in employing commercial and open-source test tools to include planning, analysis, interpretation, and test case creation (testing effort covers functional, regression, integration, performance, load, security, etc.)
  • Experience with user authentication methods, efficient client-server interactions, and internet security
  • Experience with CRON, shell scripts, Apache, Nginx, logs, package updating via YUM
  • Vast knowledge of networking and protocols like FTP, FTPS, SFTP, HTTP/S, SSH, TCP/IP, UDP, and OSI model
  • Full understanding of software development lifecycle best practices
  • Experience in a high-traffic online, consumer-facing e-commerce business
  • Understanding of PCI and GDPR compliance
  • Experience in retail or B2B business with a focus on implementing and supporting e-commerce platforms preferably in the jewelry or fashion industry a plus
  • Experience with PWA (Progressive Web Apps) a plus


  • Can manage service delivery, website/systems reliability and scalability including reporting, configuration, build, testing, planning, and deployment of solutions. You will be accountable for all aspects of deployment and related technical operations, risk management, internal and external communications and status reporting
  • Can coordinate well between a variety of vendors and technical experts
  • Is an avid learner, keeping up to date with new technology, while evaluating its impact on the organization
  • Consistently practices risk management in all aspects of their work and takes information/cybersecurity security very seriously
  • Ensures all the important components of web application management are addressed thoroughly, systematically and cleanly
  • Has a strong desire to automate information delivery and reporting, especially about potential issues; ‘preventative maintenance’ is your byword
  • Someone who is flexible, dependable and has a willingness to learn and share best practices


  • BA/BS in IS, MIS, Computer Science, or related field (or equivalent experience)
  • AWS Certified Solutions Architect – Professional certificate a plus