DevSecOps Engineer

Benjamin Gilbert

// "Benyonce"

DevSecOps engineer bridging development, security, and operations. I automate security into the pipeline so teams ship fast without shipping risk.

Get in touch → GitHub ↗
2 Years experience
AWS Cloud platform
OSS Open source author
01

About

I'm a DevSecOps engineer with 2 years of hands-on experience at Diesel Laptops, where I've taken part in major architectural reworks, and independently hardened our SDLC by a factor of 10+. I am proficient in OSS, shift-left security, identifying gaps in visibility and coverage, and filling those gaps in an affordable, secure way.

Day-to-day I build and maintain secure pipelines, automate static analysis, and make sure security is baked in from the start rather than bolted on at the end. I work heavily in AWS, Python, Bash, Git, PHP, Docker, Kubernetes, and Terraform — comfortable jumping between scripting automation and digging through IAM policies.

I'm self-taught, which means I've developed a habit of going deep on problems that bother me. I built SASTastic because parsing findings from Semgrep Community Edition was genuinely painful and mapping those findings to Jira was next to impossible. I didn't see a good solution, so I built one.

Status Employed
Employer Diesel Laptops
Role DevSecOps Engineer
Cloud AWS
GitHub bengilbert12
02

Skills & Certifications

Cloud & Infrastructure
  • AWS (IAM, EC2, S3, Lambda, VPC)
  • Cloud security posture management
  • Infrastructure as Code
  • Secrets management
  • Kubernetes
Pipeline Security
  • Secure CI/CD design
  • SAST / DAST integration
  • Software composition analysis
  • Git-based workflows
Scripting & Automation
  • Python (tooling & automation)
  • Bash scripting
  • Open-source tool development
  • API integration
Security Practices
  • Shift-left security
  • Vulnerability triage & remediation
  • Developer security enablement
  • Security policy as code
Amazon Web Services AWS Cloud Practitioner Earned 2025
CompTIA PenTest+ In Progress
03

Work Experience

DevSecOps Engineer // Diesel Laptops 2021 – present

Embedded security throughout the software development lifecycle at a fast-moving commercial vehicle diagnostics company. Built and maintained secure CI/CD pipelines, integrated static analysis tooling, and automated vulnerability scanning across multiple codebases. Worked cross-functionally with developers to identify and remediate security issues early in the development process. Managed AWS infrastructure security including IAM policies, network controls, and cloud configuration. Moved 150+ application environment from hybrid Docker/Bare Metal environment to fully managed Kubernetes environment, reducing outages by 99%.

AWS CI/CD SAST Python Bash Git pipeline security IAM open source Kubernetes
04

Projects

SASTastic

Open-source tool for ingesting Semgrep findings. Implementable in CI/CD workflows to automatically create, manage, and close Jira tickets based on findings. Also usable via CLI for developers to dry-run their changes and get visibility into their code.

Open Source / SAST
05

Contact

Interested in collaborating on open-source security tooling, or just want to talk DevSecOps? Feel free to reach out.

GitHub github.com/bengilbert12 Email bengilbert1298@gmail.com LinkedIn linkedin.com/in/benyonce

Message sent — I'll get back to you soon.

Something went wrong. Please try again.