Apply Now

PA - Senior DevSecOps Engineer - 799484 (Hybrid)

Hybrid in Mechanicsburg, PA, US • Posted 13 hours ago • Updated 13 hours ago

Contract Independent

Contract Corp To Corp

Contract W2

No Travel Required

Able to Sponsor

Hybrid

Depends on Experience

SR International Inc.

Fitment

Dice Job Match Score™

🛠️ Calibrating flux capacitors...

Job Details

Skills

Terraform
CI/CD
PowerShell
AWS security automation and DevOps
AWS CDK and CloudFormation
GitHub Actions and Azure DevOps
Python and Bash
Java and C#
EKS/ECS/Lambda
OPA/Conftest
Checkov
Trivy
Inspector
CodeQL

Summary

Job Title: Senior DevSecOps Engineer

Client: Commonwealth of Pennsylvania

Job ID: 799484 - hybrid (60% remote vs. 40% onsite), 1st day onsite onboarding

Location: Mechanicsburg, PA 17050

Closing Date:04/17/2026

Role summary

PSDC (Public Safety Delivery Center) requires the services of a Senior DevSecOps Engineer to act as consultant with the PSDC Solutions Management group.

Hands-on security automation for AWS delivery.

Build secure-by-default CDK constructs and CloudFormation templates, wire them into CI/CD, and enforce compliance checks that map to CJIS and NIST.

Azure support is a future consideration, not a core day-one duty.

Scope boundaries

Does not own enterprise AWS Organizations or SCP operations.
Designs and builds reference guardrails and enforcement patterns that can be deployed by enterprise teams.
Focuses on preventive controls and compliance automation, not incident response.

What you will deliver

First 90 days

Pipeline security templates in GitHub Actions and Azure DevOps with SAST, SCA, IaC, container, and secret scanning gates.
Compliance as code in reference accounts: AWS Config rules and Security Hub standards aligned to CJIS and NIST 800-53, with exceptions workflow documented.
IaC reference modules using AWS CDK and CloudFormation for IAM least privilege, KMS, Secrets Manager, logging, and network baselines; Terraform equivalents provided where teams require them.
Evidence exports tying checks to control IDs and producing auditor-ready artifacts.

Ongoing

Harden CDK/CFT modules and pipeline templates as compliance needs evolve.
Coach pilot teams to adopt templates.
Raise gaps to enterprise teams for org-level enforcement.

Day-to-day responsibilities

Author and maintain AWS CDK constructs and CloudFormation templates; provide Terraform versions as secondary.
Implement AWS Config conformance, Security Hub standards, and GuardDuty routing in reference accounts.
Wire scanning in CI/CD for app code, containers, and IaC.
Create reusable GitHub/Azure DevOps templates with enforcement gates and exception handling.
Generate posture and evidence reports mapped to CJIS and NIST controls.

Required skills

5+ years AWS security automation and DevOps.
Strong with AWS CDK and CloudFormation; working proficiency in Terraform.
CI/CD authoring in GitHub Actions and Azure DevOps.
Proficient in Python and Bash, with PowerShell for Windows automation.
Able to read Java and C# to integrate and tune SAST/SCA.
Practical knowledge of CJIS and NIST 800-53 control families and how to automate checks and evidence.

Nice to have

EKS/ECS/Lambda hardening patterns.
OPA/Conftest, Checkov, Trivy, Inspector, CodeQL or equivalent.
Basic Azure security automation for future phases.

Decision rights

Independent on design and build within standards; proposes guardrails and reference patterns; escalates enterprise-wide changes.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 10117029
Position Id: 822-41787-
Posted 13 hours ago

Company Info

About SR International Inc.

SR International has been a leading name among the IT consulting companies with offices in US and India. For the past 20+ years, our industry experience and domain knowledge have enabled us to provide innovative solutions to our customers.

We Are Leading IT Based Solution Providers

Today, the world of business information represents the realization of our collective efforts toward improving the future. Held only by the limits of our imagination, the business world is accelerating at an ever-increasing pace. Imagine a better way of doing business, of implementing the perfect software, of refining practice or business integration. All it takes are benchmark standards in service, support, and technical know-how, which have been our bread and butter.

Our Vision.

Established in 2002, SR International Inc is one of the fastest growing and reputed provider of Information Technology Services and Solutions in the USA. Since our inception, we have been a trusted IT partner for our clients. We take pride in our highly skilled IT Resources and unique engagement model. We have been consistently delivering on our promises as a high-performance team. Our expertise in Cloud Computing, Mobility, Web Technologies, ERP and CRM are second to none. Our industry-leading flagship product iMathSmart is re-defining math learning experience for school students.

Go to company profile

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Mechanicsburg, Pennsylvania

•

Today

We have a Contract assignment available with our client in Mechanicsburg, PA. Position: Senior DevSecOps Engineer Location: Mechanicsburg, PA Duration: 6+ Months This position requires an in-depth background check, including fingerprinting, and requires successful results. Work Location: Hybrid with two days onsite (1920 Technology Parkway, Mechanicsburg, PA 17050). Schedule can be discussed during interview. Work hours: 8AM to 5PM (hourlong lunch) Start date can be ID'd upon after compliant P

Easy Apply

Contract, Third Party

$50 - $60

Senior Dev Sec Ops Engineer (AWS Security Automation)

Harrisburg, Pennsylvania

•

Today

Role summary Hands-on security automation for AWS delivery. Build secure-by-default CDK constructs and CloudFormation templates, wire them into CI/CD, and enforce compliance checks that map to CJIS and NIST. Azure support is a future consideration, not a core day-one duty. Scope boundaries Does not own enterprise AWS Organizations or SCP operations.Designs and builds reference guardrails and enforcement patterns that can be deployed by enterprise teams. Focuses on preventive controls and complia

Easy Apply

Contract, Third Party

$60 - $65

AWS DevSecOps Engineer - Hybrid - Long Term Contract - Mechanicsburg, PA - B4017B

Hybrid in Mechanicsburg, Pennsylvania

•

Today

Our direct client is looking for a AWS security automation and DevOps Engineer for a Hybrid long term contract position in Mechanicsburg, PA. Note: - Hybrid with two days onsite. Schedule can be discussed during interview. - Work hours: 8AM to 5PM (hourlong lunch) - Start date can be ID'd upon after compliant PATCH and PSDC-related clearance has been processed and approved. Job Description: - Client requires the services of a Senior DevSecOps Engineer to act as consultant with the PSDC Solutio

Easy Apply

Contract, Third Party

Depends on Experience

DevSecOps Engineer

Hybrid in Mechanicsburg, Pennsylvania

•

Today

Requirements: 5 or more years of experience in AWS security automation and DevOps. Proficiency in AWS CDK and CloudFormation for infrastructure as code. Experience in GitHub Actions and Azure DevOps CI/CD pipeline authoring. Experience with Terraform for provisioning secure cloud infrastructure. Experience in Python, Bash, and PowerShell for infrastructure automation. Experience with CJIS and NIST 800-53 security control frameworks. Excellent verbal and written communication skills. Responsibili

Easy Apply

Contract, Third Party

Depends on Experience

Search all similar jobs

PA - Senior DevSecOps Engineer - 799484 (Hybrid)

SR International Inc.

Dice Job Match Score™

Job Details

Skills

Summary

Company Info

About SR International Inc.

Similar Jobs