DevSecOps Engineer- Hybrid Washington D.C.
Arlington, Virginia
Hybrid
Full Time
$150k - $180k
DevSecOps Engineer
This company is looking for a DevSecOps Engineer to enhance their team by embedding security within their development and operational workflows. In this role, you will design and automate CI/CD pipelines, manage cloud infrastructure using Infrastructure as Code (IaC), and implement robust security controls to safeguard critical systems. You will collaborate closely with development teams to drive automation, maintain compliance with security policies.
The candidate must have an active TS/SCI clearance.
The company is located in Washington D.C. and will be a hybrid model.
What You Will Be Doing:
This position doesn’t provide sponsorship.
This company is looking for a DevSecOps Engineer to enhance their team by embedding security within their development and operational workflows. In this role, you will design and automate CI/CD pipelines, manage cloud infrastructure using Infrastructure as Code (IaC), and implement robust security controls to safeguard critical systems. You will collaborate closely with development teams to drive automation, maintain compliance with security policies.
The candidate must have an active TS/SCI clearance.
The company is located in Washington D.C. and will be a hybrid model.
What You Will Be Doing:
- Utilize Infrastructure as Code (IaC) to efficiently manage cloud resources, ensuring scalability and flexibility.
- Embed security controls throughout the software development lifecycle, following DevSecOps best practices.
- Implement containerization technologies (e.g., Docker, Kubernetes) while enforcing security measures across container lifecycles.
- Apply DevSecOps principles in accordance with the Scaled Agile Framework (SAFe).
- Automate security testing and integrate security measures within CI/CD pipelines.
- Work closely with Agile teams, participating in SAFe ceremonies and fostering a security-first mindset.
- Develop and maintain security automation tools to streamline security operations.
- Conduct threat modeling and enforce secure coding practices.
- Contribute to incident response and ensure compliance with security frameworks.
- Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.
- Strong expertise in containerization technologies such as Docker and Kubernetes.
- Proficiency in cloud platforms like AWS, Azure, or Google Cloud.
- Experience with source control tools like Git and GitLab.
- Proficiency in programming languages such as Python, Java, or Bash scripting.
- Hands-on experience integrating security within CI/CD pipelines and automating security testing.
- Knowledge of vulnerability management, static code analysis, and security testing tools.
- Strong communication and collaboration skills with the ability to work effectively in Agile environments.
- DAST / SAST tools and securing pipeline.
This position doesn’t provide sponsorship.