Cloud DevSecOps Engineer

About The Position

Requirements

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or related field from an accredited college or university, or equivalent work experience
• 5+ years of hands-on experience in cybersecurity with a focus on cloud security
• 3+ years of experience with AWS security services and best practices
• 2+ years of experience implementing DevSecOps practices
• Expert-level knowledge of AWS security services including IAM, Security Groups, GuardDuty, CloudTrail, Config, Security Hub, and KMS
• Hands-on experience developing and maintaining Infrastructure as Code using Terraform and/or OpenTofu
• Proficiency with GitLab CI/CD pipelines and integrating security tools into DevSecOps workflows
• Strong experience with Splunk for security monitoring, including creating searches, alerts, dashboards, and correlation rules
• Deep understanding of cloud security best practices, including the AWS Well-Architected Framework Security Pillar
• Knowledge of network security concepts, including VPCs, security groups, NACLs, and VPN configurations
• Experience with container security (Docker, Kubernetes/EKS) and serverless security
• Proficiency in scripting languages such as Python, Bash, or PowerShell for security automation
• Understanding of security compliance frameworks (NIST, FedRAMP, FISMA, CIS Benchmarks)
• Experience with vulnerability management tools and practices
• Strong understanding of authentication and authorization mechanisms (OAuth, SAML, MFA)
• Excellent analytical and problem-solving skills with attention to detail
• Strong communication skills with the ability to explain complex security concepts to technical and non-technical audiences
• Ability to work independently and as part of a collaborative team
• Experience with version control systems, particularly Git

Nice To Haves

• Current AWS security certification (AWS Certified Security - Specialty or AWS Certified Solutions Architect)
• Additional relevant certifications such as CISSP, CCSP, CEH, GIAC, or similar
• Experience working in federal government IT environments
• Familiarity with additional cloud platforms (Azure, GCP)
• Experience with Security Orchestration, Automation and Response (SOAR) platforms
• Knowledge of threat intelligence platforms and integration
• Experience with configuration management tools (Ansible, Chef, Puppet)
• Understanding of zero-trust architecture principles
• Experience with application security testing tools (SAST, DAST, SCA)
• Familiarity with service mesh technologies and security implementations
• Experience with HashiCorp Vault or similar secrets management solutions
• Knowledge of Agile and DevOps methodologies
• Experience with immutable infrastructure and serverless architectures

Responsibilities

• Design, implement, and maintain security controls and monitoring solutions in AWS cloud environments
• Develop and maintain Infrastructure as Code (IaC) using Terraform and OpenTofu for secure, repeatable deployments
• Integrate security tools and processes into CI/CD pipelines using GitLab
• Configure, maintain, and optimize Splunk for security monitoring, log aggregation, and threat detection
• Conduct security assessments, vulnerability scans, and penetration testing of cloud infrastructure
• Implement and maintain security automation tools and scripts to enhance security posture
• Collaborate with development teams to embed security best practices into the software development lifecycle
• Monitor security alerts, investigate incidents, and respond to security events
• Create and maintain security documentation, runbooks, and standard operating procedures
• Participate in security architecture reviews and provide recommendations for security improvements
• Automate compliance checks and reporting for various security frameworks
• Manage secrets, credentials, and encryption key management across cloud environments
• Stay current with emerging threats, vulnerabilities, and security technologies

Benefits

• health insurance
• dental and vision insurance
• 401K with company matching
• flexible spending accounts
• paid holidays
• three weeks paid time off