DevOps Engineer - Security / PCI and Compliance
Company: Edlio LLC
Location: United States (Remote)
Type: Full-time
Remote: Yes
Posted: 2026-06-01
About this role
Description:
About Edlio
Edlio is an edtech company dedicated to helping K–12 school districts communicate, engage, and connect with their communities. We build software that matters used by millions of parents, teachers, and administrators every day. We’re a remote-first team that values collaboration, craft, and the mission of supporting public education.
About the Role
We’re hiring a DevOps Engineer to be the technical backbone of our production infrastructure, deployment pipelines, and PCI DSS compliance program. You’ll own the reliability, scalability, and security of the platforms that serve millions of educators and families, lead our PCI DSS readiness and audit work, and build AI-enabled automations that keep Edlio audit-ready and our engineering teams fast.
This role sits at the intersection of DevOps, Security & Compliance, and Platform Engineering and is a strong fit for someone who likes building scalable systems, automating away toil, and protecting the cardholder data that families and schools trust us with.
What You’ll Do
Own and continuously improve Edlio’s cloud infrastructure (AWS/Azure) including networking, compute, storage, identity & access management, and the security controls that protect our cardholder data environment (CDE).
Build, maintain, and optimize CI/CD pipelines, infrastructure-as-code (Terraform, CloudFormation), and containerized workloads (Docker, Kubernetes) that let engineering ship safely and quickly.
Lead our PCI DSS compliance program: maintain technical controls, gather evidence, manage our compliance platform (e.g., Vanta/Drata), and partner with QSAs and internal stakeholders through annual audits and quarterly scans.
Implement and monitor PCI DSS technical requirements including network segmentation, encryption (in transit and at rest), key management, vulnerability scanning, patch management, and secure configuration baselines.
Build observability into everything monitoring, logging, alerting, and...