Senior DevSecOps Engineer

Job Description -

Senior DevSecOps Engineer

Hybrid with two days onsite (1920 Technology Parkway, Mechanicsburg, PA 17050). Schedule can be discussed during interview

Work Hours: 8:00 AM 5:00 PM (one-hour lunch)

Interview.:- Video then onsite

JD

Job Description:
The Senior DevSecOps Engineer will lead efforts to design, implement, and maintain secure, scalable, and automated infrastructure environments supporting enterprise-level applications. This role requires a balance of deep technical expertise, security-first thinking, and strong collaboration across development, security, and operations teams. The engineer will be responsible for embedding security into every stage of the software development lifecycle while ensuring high availability and resilience of deployed systems.
Responsibilities:

• Develop, maintain, and secure CI/CD pipelines to support application and infrastructure delivery.
• Integrate automated testing, vulnerability scanning, and compliance validation into build and deployment workflows.
• Architect and manage containerized environments using Kubernetes and Docker.
• Define and enforce Infrastructure as Code (IaC) standards with tools such as Terraform, Ansible, or CloudFormation.
• Oversee cloud security posture management across AWS, Azure, or Google Cloud Platform, ensuring governance and compliance requirements are met.
• Build and manage monitoring, logging, and alerting solutions to ensure system reliability, scalability, and security.
• Perform risk assessments, threat modeling, and security audits for infrastructure and applications.
• Troubleshoot complex deployment, configuration, and environment issues across multiple platforms.
• Provide mentoring and technical leadership to developers, operations engineers, and junior staff.
• Document processes, system architectures, and security practices to support long-term sustainability.

Required Skills and Experience:

• 5 7+ years of professional experience in DevSecOps, Site Reliability Engineering, or Infrastructure/Cloud Security.
• Strong expertise in CI/CD automation tools (Jenkins, GitLab CI/CD, GitHub Actions, or equivalent).
• Proficiency with containers (Docker) and orchestration platforms (Kubernetes, OpenShift).
• Hands-on experience with Infrastructure as Code (Terraform, Ansible, CloudFormation, Puppet, or Chef).
• Deep knowledge of secure coding practices, threat modeling, and vulnerability management.
• Cloud platform expertise (AWS, Azure, or Google Cloud Platform), including IAM, VPC design, and secure deployment automation.
• Proficiency in scripting languages such as Python, Bash, or PowerShell.
• Experience with secrets management (Vault, AWS KMS, Azure Key Vault, or similar).
• Ability to integrate security tools into DevOps pipelines (SAST, DAST, dependency scanning, container image security).
• Solid understanding of networking concepts, TLS/SSL, VPNs, firewalls, and zero-trust security models.

Preferred Qualifications:

• Prior experience in government, public sector, or highly regulated environments.
• Familiarity with compliance frameworks (NIST, CIS Benchmarks, ISO 27001, FedRAMP, HIPAA).
• Experience with monitoring/observability tools (Splunk, ELK, Prometheus, Grafana).
• Knowledge of agile methodologies and enterprise IT service management frameworks.

Strong communication and documentation skills for cross-team collaboration