DevSecOps Engineer (Google Vertex AI & IBM WatsonX Orchestrate)

  • Hartford, CT
  • Posted 18 hours ago | Updated 18 hours ago

Overview

On Site
Depends on Experience
Contract - Independent
Contract - W2
Contract - 12 Month(s)

Skills

HIPAA
SOC 2
HITRUST
Python
Bash
Go
Open Policy Agent
HashiCorp Sentinel
IBM watsonx Orchestrate
Terraform
Helm
Kubernetes
Docker

Job Details

Position: DevSecOps Engineer (Google Vertex AI & IBM WatsonX Orchestrate)

Location: Hartford, CT (Hybrid)

Duration: 6 months Contract to hire

We are seeking a DevSecOps Engineer to lead the secure development, deployment, and operations of cloud-native applications and AI-driven platforms. This role is critical to embedding security into every phase of the software development lifecycle, ensuring resilient, scalable, and compliant systems across digital health solutions.

You will collaborate with development, infrastructure, and security teams to automate security controls, integrate CI/CD pipelines, and enforce best practices in cloud security, containerization, and vulnerability management. Your work will directly support the delivery of secure, high-performing applications that serve millions of members and providers.

______________

Key Responsibilities

Secure CI/CD Pipeline Development

Design and implement secure CI/CD workflows using tools like GitHub Actions, Jenkins, or GitLab CI, integrating automated security scans, code quality checks, and compliance gates.

Cloud Security Integration

Embed security controls into cloud-native applications deployed on Google Cloud Platform (Google Cloud Platform), including IAM policies, VPC Service Controls, workload identity, and secure service-to-service communication.

AI and Cognitive Services Security

Integrate and secure AI-driven platforms using Google Vertex AI and IBM watsonx Orchestrate, ensuring model governance, data privacy, and compliance with healthcare regulations.

Infrastructure as Code (IaC)

Develop and maintain IaC templates using Terraform or Google Cloud Deployment Manager, ensuring secure configurations and automated provisioning of cloud resources.

Container Security

Implement container hardening, image scanning, and runtime protection using tools like GKE (Google Kubernetes Engine), Docker, and Kubernetes-native security solutions (e.g., GKE Autopilot, PodSecurityPolicies, Kyverno).

Vulnerability Management

Integrate SAST, DAST, and dependency scanning tools (e.g., SonarQube, Snyk, OWASP ZAP) into development workflows, triaging and remediating findings in collaboration with engineering teams.

Security Monitoring and Incident Response

Collaborate with SOC and security teams to define logging standards, integrate with SIEM platforms (e.g., Google Chronicle, IBM QRadar), and support incident detection and response workflows.

DevSecOps Governance and Automation

Define and enforce security policies through automated guardrails, policy-as-code, and continuous compliance monitoring.

Cross-Functional Collaboration

Partner with product, architecture, and platform teams to ensure security is embedded in design decisions, threat modeling, and risk assessments.

Continuous Improvement and Innovation

Stay current with emerging DevSecOps tools, cloud security trends, and regulatory requirements (e.g., HIPAA, HITRUST), driving innovation and maturity in secure software delivery.

______________

Required Qualifications

3+ years of experience in DevOps, Site Reliability Engineering, or Cloud Engineering roles

2+ years of hands-on experience implementing security in CI/CD pipelines

2+ years of experience with cloud platforms (preferably Google Cloud Platform, AWS, or Azure)

2+ years of experience with container orchestration and security (Kubernetes, Docker)

1+ years of experience with Infrastructure as Code (Terraform, Helm, etc.)

1+ years of experience with vulnerability scanning and remediation workflows

1+ years of experience with Google Cloud security services (e.g., IAM, VPC Service Controls, Cloud Armor)

1+ years of experience integrating and securing Google Vertex AI and IBM watsonx Orchestrate in enterprise applications

Familiarity with Agile development practices and DevSecOps principles

______________

Preferred Qualifications

Proficiency in scripting languages (Python, Bash, or Go)

Experience with policy-as-code tools (e.g., Open Policy Agent, HashiCorp Sentinel)

Knowledge of compliance frameworks (HIPAA, SOC 2, HITRUST)

Experience with secrets management tools (Vault, AWS Secrets Manager, etc.)

______________

Education

Bachelor s degree in Computer Science, Cybersecurity, Engineering, or related field, or equivalent experience required.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Alphosoft Inc