DevSecOps Engineer

RESPONSIBILITIES:
Kforce has a client that is seeking a DevSecOps Engineer in Detroit, MI.

Job Summary:
We are seeking a highly skilled and security-focused DevSecOps Engineer to join our team. This role is ideal for someone with deep experience in AWS cloud infrastructure, Infrastructure as Code (IaC) using Terraform, and CI/CD automation with GitLab. The ideal candidate will be responsible for embedding security into every phase of the software development lifecycle while ensuring scalable, reliable, and compliant infrastructure deployments.

Key Responsibilities:
* Design, implement, and maintain secure infrastructure using Terraform and AWS services (e.g., EC2, Lambda, EKS, IAM, S3, CloudFormation)
* Build and manage CI/CD pipelines in GitLab, integrating security tools such as SonarQube, BlackDuck, or Snyk
* Automate security controls and vulnerability management within deployment pipelines
* Collaborate with development and operations teams to ensure secure coding practices and infrastructure compliance
* Monitor and respond to security incidents, perform root cause analysis, and implement remediation strategies
* Conduct regular security assessments, audits, and compliance checks
* Maintain documentation for security policies, procedures, and architecture
* Stay current with emerging DevSecOps tools, cloud security trends, and compliance frameworks

REQUIREMENTS:
* 5+ years of experience in DevOps or DevSecOps roles
* Strong hands-on experience with AWS services and Terraform (preferably Terraform Enterprise)
* Experience with containerization (Docker) and orchestration (Kubernetes or Amazon EKS)
* Familiarity with security scanning tools and secure SDLC practices
* Proficiency in GitLab CI/CD and scripting languages such as Python, Shell, or Groovy
* Excellent communication skills and ability to work cross-functionally

Preferred Qualifications:
* Certifications such as AWS Certified DevOps Engineer, Terraform Associate, or Certified Kubernetes Administrator
* Experience with additional tools such as Jenkins, Ansible, Prometheus, Grafana, or ELK stack
* Knowledge of compliance standards like SOC 2, HIPAA, or ISO 27001

The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.

We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.

Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.

This job is not eligible for bonuses, incentives or commissions.

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

By clicking ?Apply Today? you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.