Software Guidance & Assistance, Inc., (SGA), is searching for a
Lead IT Security Engineer for a
CONTRACT assignment with one of our premier
Financial Services clients for a
Remote position.
Responsibilities:
Goal of the Role:
Drive the integration of security capabilities into our CI/CD pipelines and development workflows for the Common Data Platform Project. Multi-year DevSecOps transformation initiative, which aims to modernize security practices across five development teams while supporting CDP's cloud migration and platform modernization goals.
- Build automated security controls directly into our software delivery pipelines.
- Partner closely with Application Security, Security Champions, and development teams to ensure security is embedded early in the development lifecycle without compromising delivery velocity.
- Implementing build gates, automating security scans, developing custom integrations, and ensuring our GitLab-based pipelines provide consistent, measurable security controls across the entire CDP portfolio.
- Design, implement, and maintain security controls within GitLab CI/CD pipelines
- Develop pipeline automation scripts
- Develop and enforce container security policies aligned with firm standards
- Work with Security Champions to provide technical support and training on pipeline security features
- Develop reference architectures and example implementations for secure pipelines
- Support developers in understanding and resolving security findings
- Support pipeline assessment data collection through pipeline telemetry
- Coordinate with GRC teams on security control validation and evidence collection
- Mentor and guide team members in secure development practices
- Advocate for security throughout the SDLC
Required Skills:
- Bachelor's degree in Computer Science, Information Technology, or related field (or equivalent experience)
- 5+ years of experience in DevOps, SRE, or Platform Engineering roles
- 3+ years of hands-on experience with GitLab CI/CD (or similar platforms like Jenkins, GitHub Actions, Azure DevOps)
- Strong expertise in CI/CD pipeline design, implementation, and optimization
- Proficiency in scripting and automation using Python, Bash, or similar languages
- Deep understanding of containerization technologies (Docker, Kubernetes, ECS)
- Experience with Infrastructure-as-Code tools (Terraform preferred)
- Practical knowledge of AWS cloud services
- Experience integrating security scanning tools into CI/CD pipelines
- Strong understanding of Git workflows, branching strategies, and merge request processes
- Experience with configuration management and pipeline-as-code practices
- Experience working in Agile/Scrum environments with 2-week sprint cycles
- Strong collaboration skills with ability to work across security, development, and operations teams
- Experience supporting multiple development teams simultaneously
- Track record of driving adoption of new tools and processes
- Ability to work on a geographically distributed team across multiple time zones
- Clear and accurate communication, excellent soft skills are a must
- Experience mentoring and/or coaching others
- Ability to document technical processes, create runbooks, and develop training materials
- Self-starter with ability to work independently and manage multiple priorities
- Team focus, flexible thinking, willingness to learn, desire to enable security to support the business
Preferred Skills:
- AWS Certified DevOps Engineer or Solutions Architect
- Security Certifications from GIAC or other
SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at .
SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company to request an accommodation or assistance regarding our policy.
Never miss an opportunity! Create an alert based on the job you applied for.