DevSecOps Engineer

About The Position

Requirements

• Experience: 4+ years in DevOps, Site Reliability, or Security Engineering roles with a heavy focus on AWS supporting federal and public sector programs (preferably DoD and Intelligence Community)
• AWS Mastery : Deep technical proficiency with VPC, IAM, S3, EC2, RDS, and AWS Security Hub. Experience with AWS GovCloud is a significant plus.
• Compliance Expertise: Proven track record of building and maintaining environments compliant with CMMC (Level 2+), NIST 800-171, or FedRAMP.
• Automation Tools: Expertise in Infrastructure as Code (Terraform, Ansible, or CloudFormation) and CI/CD tools (GitHub Actions, GitLab CI, or Jenkins).
• Security Tooling: Hands-on experience with SIEM, EDR, and vulnerability scanners (e.g., Nessus, Qualys, or Snyk).

Nice To Haves

• AWS Certified Solutions Architect – Associate or Professional
• AWS Certified Security – Specialty
• CISSP (Certified Information Systems Security Professional)
• CMMC Certified Professional (CCP)

Responsibilities

• Cloud Migration & Infrastructure (AWS) Data Migration: Design and execute the secure transfer of data and services from international AWS regions to US-based regions (e.g., US-East-1 or AWS GovCloud).
• Infrastructure as Code (IaC): Build and maintain the US cloud footprint using Terraform or CloudFormation to ensure repeatable, documented environments.
• Architecture: Optimize the AWS stack for performance, cost, and high availability, ensuring it meets the specific operational needs of the US subsidiary.
• DevSecOps & Automation CI/CD Pipeline Security: Integrate automated security scanning (SAST/DAST) and dependency checking into the deployment pipeline.
• Container Security: Manage and secure containerized workloads (Docker/K8s), ensuring image scanning and runtime protection.
• Monitoring & Logging: Implement comprehensive observability using tools like AWS CloudWatch, CloudTrail, or ELK Stack to ensure real-time threat detection.
• Cybersecurity & CMMC Compliance CMMC Program Development: Architect and implement the technical and administrative controls required for CMMC Level 2 (or higher) compliance.
• Identity & Access Management (IAM): Enforce the Principle of Least Privilege (PoLP) and Zero Trust architecture across all US systems.
• Vulnerability Management: Lead regular patching cycles, vulnerability scans, and coordination of third-party penetration testing.
• Documentation: Maintain the System Security Plan (SSP) and Plan of Action and Milestones (POA&M) required for federal audits.

Benefits

• Competitive Base Salary: We offer a strong base salary commensurate with your experience and the significant impact you'll have on our growth.
• Employee Stock Option Plan (ESOP): As an early-stage employee, you'll receive a meaningful grant of employee stock options. This provides you with an ownership stake in our company and the opportunity to share directly in our future success. We believe in aligning your contributions with our collective growth, offering substantial upside potential as we achieve our ambitious milestones.
• Company-sponsored 401(k): Matching contributions vested immediately.
• Comprehensive Healthcare: Your well-being is a priority. We provide a robust employer-sponsored healthcare plan to ensure you and your family have access to quality medical care.
• Generous Paid Time Off: We value work-life balance and offer annual Paid Time Off (PTO) plus additional dedicated sick days.
• Paid Federal Holidays: Enjoy all federal holidays throughout the year, allowing you to recharge and spend time with loved ones.