DevSecOps Engineer
Indexed description
- Deploying and maintaining a centralized artifact repository on cloud-native architecture (AWS/Azure).
- Building and maintaining CI/CD pipelines to automate the ingestion, scanning, and publishing of secure container images.
- Integrating low-CVE base images (e.g., via Chainguard) into the development supply chain.
- Implementing and managing automated compliance scanning tools (SAST/DAST/Fuzzing) within the build pipeline.
- Implementing Infrastructure as Code (IaC) using Terraform or similar tools to stand up secure environments.
- Developing best practices to increase the velocity of secure image updates and patch management.
- Ensuring system performance and availability while troubleshooting and resolving technical issues within the container lifecycle.
- Collaborating with other teams to develop and implement technical solutions for secure software delivery.
- Automating repetitive tasks to increase efficiency and reduce errors in the image hardening process.
- Documenting infrastructure configurations, processes, and procedures for secure supply chain management.
- Bachelor’s degree in IT Security, Information Systems, or equivalent
- Minimum of 4+ years of experience working with commercial cloud service providers (AWS, Azure, or GCP)
- Extensive experience with Containerization (Docker, Kubernetes) and Container Security
- Experience designing Infrastructure as Code solutions using Terraform or Ansible
- Strong proficiency in CI/CD tooling (GitLab CI, Jenkins, ArgoCD, or similar)
- Experience with Linux administration and hardening
- Demonstrated knowledge of DevSecOps processes and software supply chain security (SBOMs, signing, verification)
- Strong analytical and problem-solving skills with the ability to work independently and manage multiple projects
- US Citizenship and ability to be clearable up to the Top Secret clearance with SCI eligibility
- Experience with Chainguard images and low-CVE container strategies
- Experience working with Platform One, Iron Bank, or similar DoD software factories
- Experience with proprietary fuzzing or scanning pipelines
- Experience deploying and maintaining AWS services including ECR, S3, and RDS
- Industry certifications, such as AWS Certified Solutions Architect, Security+, or CCNA.
The estimated salary range for this position is $150,000.00 - $180,000.00, commensurate on experience and technical skillset.
We are strictly looking for direct, full-time W2 employees. We do not engage with third-party staffing agencies, C2C, or 1099 independent contractors for this role.
We are proud to be an EEO/AA employer Minorities/Women/Veterans/Disabled and other protected categories.
In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search