DevSecOps Lead Engineer | Washington, DC (Hybrid Not 100% Remote) | Only W2

Position: DevSecOps Lead Engineer
Location: Washington, DC (Hybrid Onsite required, not 100% remote)
Duration: Long Term Contract

Job Overview

We are seeking a highly skilled DevSecOps Lead Engineer to drive the integration of security into our cloud-native development and operations workflows. The ideal candidate will have deep expertise in AWS services, infrastructure automation, and secure CI/CD practices. This role requires strong hands-on skills in AWS Code Pipeline, Code Build, Code Deploy (including blue/green deployments), Terraform, and Python AWS CDK, along with proven experience in embedding security tools and frameworks across the SDLC.

Key Responsibilities

• Design and implement secure CI/CD pipelines using AWS Code Pipeline, Code Build, and Code Deploy.
• Configure and manage blue/green deployments to ensure zero-downtime releases.
• Automate infrastructure provisioning using Terraform and AWS CDK (Python).
• Integrate security scanning tools (SAST, DAST, SCA) into build and deployment workflows.
• Collaborate with development and operations teams to enforce secure coding and deployment standards.
• Monitor, assess, and remediate vulnerabilities across applications and infrastructure.
• Ensure compliance with security policies and cloud governance frameworks.
• Maintain detailed documentation of security processes, configurations, and deployment strategies.

Required Skills

• Strong hands-on experience with AWS services, including:
• Code Pipeline, Code Build, Code Deploy
• IAM, EC2, Lambda, S3, CloudFormation, API Gateway
• Proficiency in Python for infrastructure automation using AWS CDK.
• Solid experience with Terraform for infrastructure-as-code.
• Familiarity with Bitbucket/GitHub for source control and pipeline management.
• Knowledge of containerization and orchestration (Docker, Kubernetes).
• Experience with security tools (Checkmarx, SonarQube, etc.).
• Understanding of security frameworks (OWASP, NIST, CIS).

Preferred Certifications

• AWS Certified DevOps Engineer
• Certified DevSecOps Professional (CDP)
• CISSP or equivalent security certification

Soft Skills

• Strong analytical and problem-solving abilities.
• Excellent communication and cross-team collaboration skills.
• Ability to work both independently and in dynamic, cross-functional teams.
• Passion for automation, security, and continuous improvement.