DevSecOps Engineer

    • Navigant Consulting
  • Posted 46 days ago | Updated 2 hours ago

Overview

Remote
USD 100,200.00 - 150,200.00 per year
Full Time

Skills

Security clearance
Innovation
ITG
Workflow
Continuous Integration and Development
Software deployment
Security controls
Software development
Privacy
Dynamic testing
Operations
Risk management
Design
Node.js
Continuous integration
Continuous delivery
Software modernization
Application development
DevOps
Software development methodology
Cloud computing
Amazon Web Services
Microsoft Azure
Google Cloud
Google Cloud Platform
Terraform
Docker
Kubernetes
Scripting
Automation
Python
Windows PowerShell
Bash
Regulatory Compliance
National Institute of Standards and Technology
OWASP
Intrusion detection
Log analysis
Problem solving
Communication
Collaboration
CISSP
Computer science
Information systems
Mathematics
Physics
Training
Insurance
Personal development
Community development
Military
SAP BASIS
Law
LOS
Recruiting

Job Details

Job Family :
Software Development & Support

Travel Required :
Up to 10%

Clearance Required :
Ability to Obtain Public Trust

What You Will Do :
As a DevSecOps Engineer, you will be part of the Innovation and Technology group (ITG) at Guidehouse Digital supporting government systems. In this role, you will be responsible for integrating security practices into our software development and deployment processes, ensuring the continuous delivery of secure and reliable applications. The ideal candidate will have a deep understanding of development, security, and operations principles, with a passion for automating and streamlining workflows to enhance both efficiency and security.
  • Collaborate with cross-functional teams to design, implement, and maintain secure and scalable DevSecOps pipelines that integrate continuous integration, continuous delivery (CI/CD), and security practices.
  • Automate deployment, configuration, and monitoring of infrastructure and applications using modern tools and technologies.
  • Implement and enforce security controls and best practices throughout the software development lifecycle.
  • Conduct regular security assessments, vulnerability scans, and penetration tests to identify and address potential security vulnerabilities.
  • Ensure compliance with industry standards and regulatory requirements related to security and privacy.
  • Integrate security tools and practices, such as static analysis, dynamic analysis, and container security, into the CI/CD pipeline.
  • Monitor and respond to security incidents and alerts, coordinating with relevant teams to implement timely solutions.
  • Provide technical expertise and guidance to development and operations teams on security best practices and risk mitigation strategies.
  • Stay up-to-date with emerging security threats and vulnerabilities, and proactively recommend solutions to address potential risks.
  • Collaborate with the development team to ensure that security is incorporated into the design and architecture of applications.
  • Participate in code reviews, identify security flaws, and suggest remediation strategies.
  • Document processes, procedures, and best practices to improve team knowledge and efficiency.

What You Will Need :
  • Minimum FOUR (4) years of experience as a DevSecOps Engineer, Security Engineer, or similar role.
  • Experience with Node.js, npm, and yarn.
  • Experience with DevSecOps, CI/CD, application modernization, and/or cloud-native application development will provide a useful context for the work that needs to be done.
  • Strong knowledge of DevOps principles and practices, as well as software development methodologies.
  • Familiarity with cloud computing platforms (e.g., AWS, Azure, Google Cloud) and infrastructure-as-code (IaC) tools (e.g., Terraform, CloudFormation).
  • Experience with containerization technologies such as Docker and Kubernetes.
  • Proficiency in scripting and automation using languages such as Python, PowerShell, or Bash.
  • Knowledge of security frameworks and compliance standards (e.g., NIST, CIS, OWASP).
  • Hands-on experience with security tools such as vulnerability scanners, intrusion detection systems, and log analysis tools.
  • Strong problem-solving skills and the ability to analyze complex technical issues.
  • Excellent communication skills to collaborate with both technical and non-technical stakeholders.


What Would Be Nice To Have :
  • Relevant certifications such as Certified DevSecOps Engineer, Certified Information Systems Security Professional (CISSP), or equivalent, are a plus.
  • Master's degree in computer science, information systems, mathematics, physics, or related discipline.


The annual salary range for this position is $100,200.00-$150,200.00. Compensation decisions depend on a wide range of factors, including but not limited to skill sets, experience and training, security clearances, licensure and certifications, and other business and organizational needs.

What We Offer :

Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.

Benefits include:
  • Medical, Rx, Dental & Vision Insurance
  • Personal and Family Sick Time & Company Paid Holidays
  • Position may be eligible for a discretionary variable incentive bonus
  • Parental Leave and Adoption Assistance
  • 401(k) Retirement Plan
  • Basic Life & Supplemental Life
  • Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
  • Short-Term & Long-Term Disability
  • Student Loan PayDown
  • Tuition Reimbursement, Personal Development & Learning Opportunities
  • Skills Development & Certifications
  • Employee Referral Program
  • Corporate Sponsored Events & Community Outreach
  • Emergency Back-Up Childcare Program
  • Mobility Stipend


About Guidehouse
Guidehouse is an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.

Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.

If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.

Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.