Talent.com
AWS DevSecOps Engineer
AWS DevSecOps EngineerVITG • Ellicott City, MD, United States
AWS DevSecOps Engineer

AWS DevSecOps Engineer

VITG • Ellicott City, MD, United States
19 hours ago
Job type
  • Full-time
Job description

Job Description :

VITG is seeking a DevSecOps Engineer responsible for automating security integration throughout the CI / CD pipeline and the AWS cloud environment. This role will "shift security left" by taking the lead on implementing security-as-code tools, managing their usage, ensuring their proper configuration and compliance, and proactively embedding security policy into the development process. Our ideal candidate is passionate about being part of a "change," and working in a dynamic and highly collaborative environment focused on speed, stability, and security.

The DevSecOps Engineer provides hands-on expertise to integrate and maintain the security posture for corporate systems that support Federal programs, ensuring a successful program Authority To Operate (ATO). You will be responsible for developing, monitoring, and maintaining systems and procedures to safeguard internal information systems, networks, and CI / CD pipelines through automation.

Applicant Requirements :

  • US citizen or must be authorized to work in the United States
  • Must have lived in the USA for three years of the last five years
  • Must be able to obtain a US federal gov badge and eligible for Public Trust clearance
  • Must be able to pass a background check, including a drug test

Job Responsibilities :

  • Develop, implement, and maintain security automation throughout the entire SDLC, integrating security into the CI / CD pipelines using Jenkins / Github and Infrastructure-as-Code (IaC) principles.
  • Run and manage security scans with tools such as Snyk (SAST / SCA) and establish automated tracking and enforcement mechanisms for vulnerability remediation.
  • Integrate and manage security workloads running on AWS containers and ensure container image scanning and runtime security policies are enforced.
  • Design, manage, and maintain source code for AWS infrastructure in GitHub and manage automated pipelines, ensuring security checks and gates are embedded in every deployment.
  • Maintain security information on JIRA / Confluence and actively participate in agile DevSecOps practices, promoting a "Secure-by-Design" culture.
  • Provides hands-on support for developing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies as code.
  • Maintain operational security posture for Enterprise Salesforce FISMA system by ensuring security is baked into configuration and deployment practices.
  • Implement security tools, security tool usage, and policy-as-code to ensure configurations remain compliant and configured properly, all while ensuring a successful program ATO.
  • Automate vulnerability / risk assessment analysis to support continuous monitoring and authorization.
  • Manages changes to the system and assesses the security impact of those changes through automated compliance checks.
  • Assists with the management of security aspects of the information system and performs day-to-day security operations of the system
  • Evaluate security solutions to ensure they meet security requirements for processing classified information
  • Performs vulnerability / risk assessment analysis to support certification and accreditation
  • Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs)

    • Qualifications & Skills :

  • Bachelor's or Master's degree in Computer Science, Engineering, Information Technology, or a related discipline
  • Minimum of 6 years related experience in Information Technology including 4 years in the DevSecOps or Application Security (AppSec) space.
  • Demonstrated hands-on experience in cloud environments such as AWS Commercial and GovCloud, specifically with security automation, logging, and monitoring services (e.g., GuardDuty, Security Hub, CloudTrail).
  • Expertise in CI / CD pipeline management and the integration of security tools for Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA).
  • Required : Strong hands-on experience with AWS, Snyk, GitHub, JIRA, and Confluence to implement and manage the end-to-end DevSecOps toolchain.
  • Demonstrated work experience with Infrastructure-as-Code (IaC) security (e.g., using Checkov or Terrascan on Terraform / CloudFormation).
  • (Preferred) Experience with Salesforce Platform and tool ecosystem
  • (Preferred)Salesforce or any other platform tool - Configuration / Setup of External Client Applications and Secure Communications (TLS)
  • (Preferred) AppOmni - Have used it and can manage issues, perform new org additions and configurations.
  • Strong background in the certification and accreditation process (ATO) and the ability to automate compliance checks against frameworks like FISMA, NIST, and FedRAMP.
  • Possesses working knowledge of business security practices, current security automation tools, and policy-as-code implementation.
  • Demonstrated working knowledge of vulnerability assessment and penetration testing processes, focusing on how to automate these checks.
  • Experience with Government Agency Security Assessment Process in support of maintaining and / or establishing an ATO and the appropriate boundary.
  • Experience with, understanding of and adherence to guidelines such as FISMA, NIST, HIPPA, and IRS Pub-1075 (Preferred)

    • Preferred Certifications :

  • Require AWS DevOps or SysOps or equivalent Certification
  • Preferably possess industry certification such as the CISSP, CEH, GIAC, etc

    • Job Type : Full Time

    Salary : BOE

    Benefits :

  • 401(k) with employer contribution
  • Medical / Dental / Vision insurance (option for full coverage for employee)
  • Life, ST / LT insurance
  • Professional development opportunities

    • Schedule :

  • 8 hour shift
  • May include minimal after hours support depending on deployment schedule

    • Work Type :

  • Hybrid remote in Ellicott City, MD 21043
  • 1 to 2 days in office weekly
    • Create a job alert for this search

    Aws Engineer • Ellicott City, MD, United States

    Related jobs
    AWS Cloud Engineer

    AWS Cloud Engineer

    Barrow Wise Consulting • MD, USA
    Full-time
    Quick Apply
    Enjoy problem-solving, need a venue to display your creativity, and emerging technologies pique your interest; if so, Barrow Wise Consulting, LLC is for you. As a multi-disciplined leader, you under...Show more
    Last updated: 30+ days ago
    Software Engineer L3 - DevOps, HPC

    Software Engineer L3 - DevOps, HPC

    Technology Resource Experts LLC • Annapolis Junction, MD, United States
    Full-time
    Technology Resource Experts, LLC.DevOps Engineer to join their rapidly growing team!.The DevOps - Software Engineer shall be responsible for software integration efforts, development of framework s...Show more
    Last updated: 5 days ago • Promoted
    AWS Developer

    AWS Developer

    STEM Solutions • Fort Meade, MD, United States
    Full-time
    Are you looking to take the next steps in your career as an AWS Developer? Let's chat and see if we are a good match!.We are searching for an experienced AWS Developer to join our dynamic IT team i...Show more
    Last updated: 30+ days ago • Promoted
    Site Reliability Engineer (AWS)

    Site Reliability Engineer (AWS)

    ALTA IT Services • Baltimore, Maryland, United States
    Full-time
    Site Reliability Engineer (AWS) Hybrid, Baltimore, MD Contract To Hire Hourly Rate : $72 / hr.Benefits available Conversion Salary : $135,000 range annually, plus benefits Per Federal contract : US Citi...Show more
    Last updated: 3 days ago • Promoted
    Security Clearance DevOps Engineer

    Security Clearance DevOps Engineer

    Globalchannelmanagement • Fort Meade, Maryland, United States
    Full-time
    Security Clearance DevOps Engineer needs 5+ years of experience in DevOps Engineering or Software Development (Java preferred). Security Clearance DevOps Engineer requires : .Security Clearance - A cu...Show more
    Last updated: 30+ days ago • Promoted
    Mid-Level DevOps Engineer

    Mid-Level DevOps Engineer

    Gliacell Technologies • MD, MD, United States
    Full-time
    An active or rein-statable TS / SCI with Polygraph security clearance is REQUIRED.Please do not apply if you currently do not possess this level of clearance. Are you a Mid-Level DevOps Engineer who i...Show more
    Last updated: 30+ days ago • Promoted
    OCO Cloud Engineer (DWS - SME)

    OCO Cloud Engineer (DWS - SME)

    Gormat • Annapolis Junction, MD, USA
    Full-time
    Quick Apply
    USCYBERCOM and IC Partner experience.Extensive experience creating enterprise solutions using CloudFormation or Terraform in AWS EKS Cloud Environments as well as AWS Data management best practices...Show more
    Last updated: 30+ days ago
    Senior Consultant - AWS Cloud

    Senior Consultant - AWS Cloud

    Trilagen • MD, US
    Remote
    Full-time
    Quick Apply
    Trilagen is looking for a skilled and innovative Senior Consultant with a focus on AWS Cloud to join our expert team.In this role, you will be responsible for designing, implementing, and optimizin...Show more
    Last updated: 30+ days ago
    Cleared DevOps Engineer

    Cleared DevOps Engineer

    Bestgate Engineering • Annapolis Junction, MD, US
    Full-time
    Quick Apply
    Cleared DevOps Engineer Join Bestgate Engineering, where we deliver cutting-edge solutions for national security and enterprise innovation. At Bestgate, we’re driven by excellence, teamwork, a...Show more
    Last updated: 5 days ago
    Cybersecurity - Cloud Engineer - AWS, Kubernetes

    Cybersecurity - Cloud Engineer - AWS, Kubernetes

    Erias Ventures • Annapolis Junction, MD, United States
    Full-time
    Erias Ventures was founded to serve its customers with an entrepreneurial mindset.Our staff includes technical experts working across multiple disciplines, bringing diverse perspectives to every pr...Show more
    Last updated: 12 days ago • Promoted
    Software Engineer I (MERN, AWS)

    Software Engineer I (MERN, AWS)

    Travelers Insurance • Hunt Valley, MD, United States
    Full-time
    Taking care of our customers, our communities and each other.By honoring this commitment, we have maintained our reputation as one of the best property casualty insurers in the industry for over 17...Show more
    Last updated: 5 days ago • Promoted
    Software Engineer II (DevOps)

    Software Engineer II (DevOps)

    Prosync • Annapolis Junction, MD, US
    Full-time
    Quick Apply
    ProSync Technology Group, LLC (ProSync) is an award-winning, SDVOSB Defense Contracting company with a strong military heritage and a record of excellence in supporting the Department of Defense an...Show more
    Last updated: 5 days ago
    Senior Cloud DevSecOps Engineer

    Senior Cloud DevSecOps Engineer

    CACI International • Hanover, MD, United States
    Part-time
    Senior Cloud DevSecOps Engineer.Minimum Clearance Required to Start : TS / SCI with Polygraph.Employee Type : Part-Time On-Call-Short-Term Assignment. Percentage of Travel Required : None.CACI is seeking...Show more
    Last updated: 30+ days ago • Promoted
    (3373) Senior DevOps Engineer

    (3373) Senior DevOps Engineer

    Iamus Consulting • Hanover, Maryland, United States
    Full-time
    We are seeking a highly motivated and experienced DevOps Engineer to join our fast-paced development team.The ideal candidate will have strong working knowledge in Kubernetes and Container Orchestr...Show more
    Last updated: 30+ days ago • Promoted
    Software Engineer (DevOps Focused)

    Software Engineer (DevOps Focused)

    Set of X • Ft Meade; Hanover, MD, US
    Full-time
    Quick Apply
    WE ARE HIRING OWNERS Set of X is led by industry veterans who see government contracting as a good community with plenty of opportunity to go around. With a shared desire to give back, grow the comm...Show more
    Last updated: 30+ days ago
    DevOps Software Engineer

    DevOps Software Engineer

    Maania • Fort George G Meade, Maryland, United States
    Full-time
    Quick Apply
    Must have Active Secret Clearance.Strong working knowledge of Git and experience with development workflows in Bitbucket or an equivalent tool. Strong experience working on a UNIX command line platf...Show more
    Last updated: 30+ days ago
    DevOps Engineer (Terraform)

    DevOps Engineer (Terraform)

    HRUCKUS • Annapolis Junction, Maryland, United States
    Full-time
    Veteran-Owned Firm Seeking a DevOps Engineer (Terraform) with TS / SCI for a role in Annapolis Junction, MD.I lead a Veteran-Owned management consulting firm in Washington, DC.We specialize in Techni...Show more
    Last updated: 1 day ago • Promoted
    DevOps Engineers

    DevOps Engineers

    Artera Technologies • Fort Meade, MD, US
    Full-time
    Quick Apply
    Full Time Level : Mid, Senior, Principal Location : Maryland (Annapolis Junction / Fort Meade area) Security Clearance : TS / SCI with Appropriate Agency Polygraph Artera Technologies, LLC’s Cloud...Show more
    Last updated: 30+ days ago