Overview
On Site
$70
Accepts corp to corp applications
Contract - W2
Contract - 8 day((s))
Skills
DevSecOps
cloud
security
CISSP
SClientialty
microservices
Job Details
Job Description: (DevSecOps Engineer)
Preferred: You can source from all below loction
Boston, Rockville, MD, Lexington, KY. Denver, Los Angeles (Hybrid 3 days onsite)
Overview
We are hiring a seasoned Staff DevSecOps Engineer to embed security at every stage of the software development lifecycle. This is a hands-on role for someone passionate about security automation, cloud platforms, and driving secure DevOps practices. Ideal candidates bring 5 8+ years of experience and a strong grasp of CI/CD, Kubernetes, cloud security, and infrastructure as code.
Key Responsibilities
Integrate security seamlessly into the CI/CD pipeline across the SDLC.
Design, implement, and manage security automation tools and workflows.
Define and enforce cloud and on-prem security policies and best practices.
Monitor, analyze, and remediate security vulnerabilities and incidents.
Perform code reviews, vulnerability scans, and penetration tests.
Secure Kubernetes clusters and containerized environments.
Implement and manage security tools (firewalls, IDS/IPS, endpoint protection).
Automate security tasks using Python and shell scripting.
Manage infrastructure using Terraform, OpenTofu, or CloudFormation.
Participate in incident response and disaster recovery planning.
Qualifications
5+ years in DevSecOps, Security Engineering, or DevOps with a strong security focus.
Hands-on experience with AWS (or Google Cloud Platform/Azure with desire to move into AWS).
Proficient with CI/CD tools like GitHub Actions, Jenkins, GitLab CI, or CircleCI.
Strong Kubernetes experience in production environments.
Experience with IaC tools: Terraform, OpenTofu, or CloudFormation.
Strong programming skills in Python and shell scripting.
Deep knowledge of secure coding practices, encryption, and access control.
Excellent communication and cross-functional collaboration skills.
ship or a is required due to ITAR data handling.
Preferred Qualifications
Security architecture and secure system design experience.
Experience with JavaScript and securing JavaScript-based applications.
Certifications: CISSP, Security+, AWS Security SClientialty, etc.
Experience automating security in microservices architectures.
Bachelor's degree in CS, InfoSec, Engineering, or equivalent experience.
Recruiter Notes
Ideal candidates are passive job seekers with startup or tech company experience.
Avoid candidates from finance or government backgrounds with limited hands-on exposure.
Work mode: Hybrid (3 days onsite for time zone alignment with EU).
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.