DevSecOps / Tooling Engineer - Remote

DevSecOps / Tooling Engineer

Main Sail LLC is seeking a DevSecOps / Tooling Engineer to support automated build, deployment, and security processes for S/4HANA.

The DevSecOps / Tooling Engineer leads the DevSecOps and Software Development Lifecycle (SDLC) tooling capability for the organization. Develops and implements a secure, automated, and efficient CI/CD (Continuous Integration/Continuous Delivery) pipeline, integrating a suite of development, security, and operations tools. Works with development, security, and operations teams to understand requirements, design automated workflows, and provide the technology platforms that enable rapid and secure software delivery. Leads the build, maintenance, and continuous improvement of the CI/CD and tooling ecosystem.

Key Responsibilities:
-The DevSecOps / Tooling Engineer is responsible for leading complex system integration, automation, and security engineering. Responsibilities include:
-Lead the design, implementation, and management of CI/CD pipelines to support the automated build, test, and deployment of software.
-Provide guidance and best practices to development teams on using the CI/CD pipeline, containerization (Docker, Kubernetes), and Infrastructure as Code (IaC) tools (e.g., Terraform, Ansible).
-Oversee the integration and automation of security tools (SAST, DAST, SCA, etc.) directly into the development lifecycle, ensuring security is a continuous and early part of the process.
-Collaborate with stakeholders across Development, Cybersecurity, and IT Operations to define tooling requirements, streamline processes, and break down silos.
-Foster a culture of automation, "security as code," and continuous improvement, empowering development teams with self-service capabilities and fast feedback loops.
-Monitor, analyze, and report on pipeline performance, system health, and security vulnerabilities, proactively identifying and mitigating risks to the delivery process.
-Ensure adherence to Agile, DevOps, and security best practices, promoting efficient and compliant software delivery.
-Facilitate communication between teams, ensuring seamless integration between code repositories (e.g., Git), build servers (e.g., Jenkins, GitLab CI), artifact repositories (e.g., Artifactory), and deployment targets (Cloud/On-prem).
-Mentor and support junior engineers and developers, promoting skill growth in areas like cloud-native technologies, automation scripting, and security principles.
-Stay informed about emerging technologies and best practices in the DevSecOps and cloud-native landscape (e.g., GitOps, Service Mesh, new security tools) to drive continuous innovation.

Basic Qualifications:
-Extensive experience in a DevOps, Site Reliability Engineering (SRE), or DevSecOps role, with a deep understanding of CI/CD principles and tooling.
-Proven ability to design, build, and manage complex CI/CD pipelines using tools like Jenkins, GitLab CI, Azure DevOps, or similar.
-In-depth knowledge of Agile/Scrum and DevOps practices.
-Strong communication and interpersonal skills to effectively collaborate with technical and non-technical stakeholders.
-Proficiency in scripting (e.g., Python, Bash, PowerShell) and Infrastructure as Code (e.g., Terraform, Ansible).
-Ability to align tooling and automation initiatives with broader business objectives, such as increasing deployment frequency, improving system reliability, and reducing security risks.
-Experience in mentoring team members and advocating for DevOps/DevSecOps best practices.
-Demonstrated ability to drive continuous improvement by automating manual tasks, optimizing pipelines, and implementing new tools.
-Hands-on experience with containerization (Docker, Kubernetes), cloud platforms (AWS, Azure, Google Cloud Platform), and security scanning tools (SAST, DAST, SCA).

Federal-Specific Requirements
-Security Awareness: Understanding of the importance of data privacy and "Least Privilege" access in a federal environment.

Location: Remote

***United States Citizenship Required (Dual citizenship not authorized)***