Security Engineering Lead DevSecOps

About the Role
We re seeking a skilled Security Engineering Lead with deep expertise in DevSecOps, GitHub Enterprise, and secret management to join a high-impact cybersecurity initiative for a Fortune 50 enterprise client. This long-term contract role focuses on improving source code security, enforcing secret hygiene, and driving secure development practices through scalable automation and governance.
You'll lead strategic remediation of exposed secrets in GitHub repositories, implement secret scanning tools like GitGuardian, and integrate with platforms such as ServiceNow and Azure DevOps. Experience with AI-enhanced security operations and working in large-scale IT or Big 4 consulting environments is a strong plus.

Key Responsibilities
Lead DevSecOps and code security initiatives, focusing on secrets remediation in GitHub
Drive governance for secret management (PATs, SSH keys, rogue/public repos)
Integrate and optimize tools like GitGuardian and ServiceNow for alerting and workflow automation
Design dashboards and metrics to track remediation progress
Collaborate across teams to embed secure development practices and training
Explore AI/GenAI tools to enhance detection and remediation workflows
Requirements
8+ years in security engineering, DevSecOps, or AppSec roles
Expertise in GitHub Enterprise, secret detection, and remediation
Experience with GitGuardian, ServiceNow, and automation of security workflows
Strong communication and governance enforcement capabilities
Familiarity with AI/GenAI in security, GRC frameworks (NIST, CIS, ISO 27001), and secure SDLC practices