Overview
Skills
Job Details
DevSecOps Lead Engineer
Location : Washington, DC - Hybrid position and not 100% remote role
Long term duration
Required Skills
Strong hands-on experience with AWS services, including:
Code Pipeline, Code Build, Code Deploy
IAM, EC2, Lambda, SQS, S3, CloudFormation, AWS API GATEWAY
Proficiency in Python, especially for infrastructure automation using AWS CDK.
Experience with Terraform for infrastructure-as-code.
Familiarity with Bitbucket and GITHUB for source control and pipeline management.
Knowledge of containerization and orchestration (Docker, Kubernetes).
Experience with security tools (e.g. Checkmarx, SonarQube).
Understanding of security frameworks (e.g., OWASP, NIST, CIS).
Important Note :
We have shifted to adopting SAFe and
1. Encourage Contractors trained in SAFe
2. Request that contractors have camera available and on majority of the time
3. Set expectations that they are part of Agile team on which we need them to embrace self-management and self-organization in terms of their iteration commitments, capacity planning, capacity allocation, etc.
As long as they can come DC on need basis and attend the important SAFe ceremonies like PI onsite.
Job Overview
We are seeking a highly skilled DevSecOps Engineer to lead the integration of security into our cloud-native development and operations workflows. This role requires deep expertise in AWS tooling, infrastructure automation, and secure CI/CD practices. The ideal candidate will have hands-on experience with AWS Code Pipeline, Code Build, Code Deploy (including blue/green deployments), Bitbucket, Python CDK, and Terraform.
________________________________________Key Responsibilities
Design and implement secure CI/CD pipelines using AWS Code Pipeline, Code Build, and Code Deploy.
Configure and manage blue/green deployments for zero-downtime releases.
Automate infrastructure provisioning using Terraform and AWS CDK (Python).
Integrate security scanning tools (SAST, DAST, SCA) into build and deployment workflows.
Collaborate with development and operations teams to enforce secure coding and deployment standards.
Monitor and respond to vulnerabilities across applications and infrastructure.
Ensure compliance with security policies and cloud governance frameworks.
Maintain documentation for security processes, configurations, and deployment strategies.
________________________________________Required Skills
Strong hands-on experience with AWS services, including:
o Code Pipeline, Code Build, Code Deploy
o IAM, EC2, Lambda, S3, CloudFormation
Proficiency in Python, especially for infrastructure automation using AWS CDK.
Experience with Terraform for infrastructure-as-code.
Familiarity with Bitbucket for source control and pipeline management.
Knowledge of containerization and orchestration (Docker, Kubernetes).
Experience with security tools (e.g. Checkmarx, SonarQube).
Understanding of security frameworks (e.g., OWASP, NIST, CIS).
________________________________________
Preferred Certifications
AWS Certified DevOps Engineer
Certified DevSecOps Professional (CDP)
CISSP or equivalent security certification
________________________________________
Soft Skills
Strong analytical and problem-solving abilities.
Excellent communication and collaboration skills.
Ability to work independently and in cross-functional teams.
Passion for automation, security, and continuous improvement.