Senior DevSecOps EngineerApollo ITS • Mechanicsburg, PA, United States
Senior DevSecOps Engineer
Apollo ITS • Mechanicsburg, PA, United States
1 day ago
Job type
- Full-time
Job descriptionAuthor and maintain AWS CDK constructs and CloudFormationtemplates; provide Terraform versions as secondary. Implement AWS Config conformance, Security Hub standards, andGuardDuty routing in reference accounts. Wire scanning in CI / CD for app code, containers, and IaC. Create reusable GitHub / Azure DevOps templates with enforcement gatesand exception handling. Generate posture and evidence reports mapped to CJIS and NIST controls. Ridkill 5+ years AWS security automation and DevOps. Strong with AWS CDK and CloudFormation ; working proficiency in Terraform . CI / CD authoring in GitHub Actions and Azure DevOps . Proficient in Python and Bash , with PowerShell for Windowsautomation. Able to read Java and C# to integrate and tune SAST / SCA. Practical knowledge of CJIS and NIST 800-53 control families and how toautomate checks and evidence. EKS / ECS / Lambda hardening patterns. OPA / Conftest, Checkov, Trivy, Inspector, CodeQL or equivalent. Basic Azure security automation for future phases. Independent on design and build within standards; proposes guardrails andreference patterns; escalates enterprise-wide changes. 5+ years AWS security automationand DevOps Strong with AWS CDK andCloudFormation; workingproficiency in Terraform CI / CD authoring in GitHub Actionsand Azure DevOps Proficient in Python and Bash,with PowerShell for Windowsautomation Able to read Java and C# tointegrate and tune SAST / SCA Practical knowledge of CJIS andNIST 800-53 control families andhow to automate checks andevidence EKS / ECS / Lambda hardeningpatterns OPA / Conftest, Checkov, Trivy,Inspector, CodeQL or equi Basic Azure security automationfor future phases
Role : Senior DevSecOps Engineer
Location : Mechanicsburg,PA
Duration : 8+ month (extendable)
Work Location : Hybrid with two days onsite (1920 Technology Parkway, Mechanicsburg,PA 17050). Schedule can be discussed during interview.
Job Description : Role summary
- Hands-on security automation for AWS delivery. Build secure-by-defaultCDK constructs and CloudFormation templates, wire them into CI / CD, andenforce compliance checks that map to CJIS and NIST. Azure support is afuture consideration, not a core day-one duty.
- Scope boundaries
- Does not own enterprise AWS Organizations or SCP operations.
- Designs and builds reference guardrails and enforcement patterns thatcan be deployed by enterprise teams.
- Focuses on preventive controls and compliance automation, not incidentresponse.
- What you will deliver
- First 90 days
- Pipeline security templates in GitHub Actions and Azure DevOps withSAST, SCA, IaC, container, and secret scanning gates.
- Compliance as code in reference accounts : AWS Config rules and SecurityHub standards aligned to CJIS and NIST 800-53, with exceptionsworkflow documented.
- IaC reference modules using AWS CDK and CloudFormation for IAMleast privilege, KMS, Secrets Manager, logging, and network baselines;Terraform equivalents provided where teams require them.
- Evidence exports tying checks to control IDs and producing auditor-readyartifacts.
- Ongoing
- Harden CDK / CFT modules and pipeline templates as compliance needsevolve.
- Coach pilot teams to adopt templates.
- Raise gaps to enterprise teams for org-level enforcement.
Day-to-day responsibilities
Required skills
Nice to have
Decision rights
Required / Desired Skills :
Create a job alert for this search
Senior Engineer • Mechanicsburg, PA, United States
Related jobs
Lead Software Engineer, Backend.Do you love building and pioneering in the technology space? Do you enjoy solving complex business problems in a fast-paced, collaborative, inclusive, and iterative ...Show more
The Nutanix Flow Network Security Architect is responsible for designing, implementing, and managing network security solutions within the Nutanix Flow environment.
This role involves ensuring the s...Show more
Lead Software Engineer, DevOps (Payment Services).Do you love building and pioneering in the technology space? Do you enjoy solving complex business problems in a fast-paced, collaborative, inclusi...Show more Director, Software Engineering.As a Capital One Director of Software Engineering, you'll work on everything from customer-facing web and mobile applications using cutting-edge open source framework...Show more 
Enterprise Horizon Consulting Group (EHCG) is a Woman-Owned Small Business specializing in IT Consulting which has successfully delivered key capabilities to the Navy, Army, and NASA over the past ...Show more
GovCIO is currently hiring for an UNIX Systems Engineer to plan, execute, and implement,create and maintain team technical instructions, operating procedures and policies as neededThis position wil...Show more
Join our dynamic automation team as an experienced Site Reliability Developer focused on deploying and managing automation capabilities and platforms for Linux, Windows, and cloud native systems an...Show more Lead Platform Engineer (Network Infrastructure).Do you love building and pioneering in the technology space? Do you enjoy solving complex technical problems in a fast-paced, collaborative, inclusiv...Show more 
Senior Solution Architect, SAP .Key role in ensuring that the implemented solutions will not compromise our S / 4 sustainability goals as it relates to.
The SAP Solution Architect will be primarily re...Show more
Base is planning to bring a million developers and a billion users onchain.We need your help to make that happen.We believe that the onchain platform is the most important builder platform since th...Show more Manager, Solution Architecture (Workday).Do you love building and pioneering in the technology space? Do you enjoy solving complex technical problems in a fast-paced, collaborative, inclusive, and ...Show more 
Participate in all aspects of the development life cycle while working with an extensive team of analysts, developers and testers to deliver software projects that meet or exceed client expectation...Show more
The Senior DevSecOps Engineer will lead efforts to design, implement, and maintain secure, scalable, and automated infrastructure environments supporting enterprise-level applications.This role req...Show more Lead Software Engineer, Global Payment Network.Do you love building and pioneering in the technology space? Do you enjoy solving complex business problems in a fast-paced, collaborative, inclusive,...Show more Manager, Architect Network & Telecom .Responsible for the design, installation, securing and maintenance of a company's communications infrastructure, including telephone, data, and video systems.L...Show more Future Opportunities Packaging Systems Engineering Intern / Co-Op (Spring 2026) .Intern Packaging Systems Engineering.Looking for students open to working full time for multiple rotations (Spring : Ja...Show more Lead Software Engineer (SRE / DevOps).Do you love building and pioneering in the technology space? Do you enjoy solving complex business problems in a fast-paced, collaborative, inclusive.At Capital ...Show more Lead Software Engineer, DevOps - Global Payment Network.Do you love building and pioneering in the technology space? Do you enjoy solving complex business problems in a fast-paced, collaborative, i...Show more
Lead Software Engineer, Backend
Capital One • York, PA, US
Full-time +1
Last updated: 30+ days ago • Promoted
Expert Systems Engineer
Corporation Service Company • Harrisburg, PA, United States
Permanent
Last updated: 1 day ago • Promoted
Lead Software Engineer, DevOps (Payment Services)
Capital One • York, PA, US
Full-time +1
Last updated: 1 day ago • Promoted
Senior Manager, Software Engineering Full Stack
Capital One • York, PA, US
Full-time +1
Last updated: 23 hours ago • Promoted
Sr. DevSecOps Engineer
Enterprise Horizon Consulting Group • Mechanicsburg, PA, United States
Full-time
Last updated: 1 day ago • Promoted
UNIX Systems Engineer
GovCIO • Harrisburg, PA, United States
Full-time
Last updated: 30+ days ago • Promoted
Sr Site Reliability Developer
Oracle • Harrisburg, PA, United States
Full-time
Last updated: 1 day ago • Promoted
Lead Platform Engineer (Network Infrastructure)
Capital One • York, PA, US
Full-time +1
Last updated: 15 hours ago • Promoted • New!
Senior Solution Architect, SAP
The Hershey Company • Hershey, PA, United States
Full-time
Last updated: 30+ days ago • Promoted
Senior Protocol Engineer
Coinbase • Harrisburg, PA, United States
Full-time
Last updated: 30+ days ago • Promoted
Manager, Solution Architecture (Workday)
Capital One • York, PA, US
Full-time +1
Last updated: 23 hours ago • Promoted
COBOL / .NET Developer
eTeam • Mechanicsburg, PA, United States
Full-time
Last updated: 30+ days ago • Promoted
Senior DevSecOps Engineer
ProRec Resource Solutions • Mechanicsburg, PA, United States
Full-time
Last updated: 1 day ago • Promoted
Lead Software Engineer, Global Payment Network
Capital One • York, PA, US
Full-time +1
Last updated: 23 hours ago • Promoted
Manager, Architect Network & Telecom
The Hershey Company • Hershey, PA, United States
Full-time
Last updated: 5 days ago • Promoted
Future Opportunities Packaging Systems Engineering Intern / Co-Op (Spring 2026)
The Hershey Company • Hershey, PA, United States
Full-time
Last updated: 30+ days ago • Promoted
Lead Software Engineer (SRE / DevOps)
Capital One • York, PA, US
Full-time +1
Last updated: 1 day ago • Promoted
Lead Software Engineer, DevOps - Global Payment Network
Capital One • York, PA, US
Full-time +1
Last updated: 1 day ago • Promoted