Job Title: DevSecOps EngineerLocation: Fully RemoteSalary: DOE + full benefitsClearance: Active Public Trust (or ability to obtain)Job SummaryWe are seeking a skilled and motivated DevSecOps Engineer to join ourdynamic team. In this role, you will be responsible for integratingsecurity practices into our software development and deployment processes,ensuring the continuous delivery of secure and reliable applications. Theideal candidate will have a deep understanding of development, security,and operations principles, with a passion for automating and streamliningworkflows to enhance both efficiency and security.Job Responsibilities· Collaborate with cross-functional teams to design, implement, andmaintain secure and scalable DevSecOps pipelines that integrate continuousintegration, continuous delivery (CI/CD), and security practices.· Automate deployment, configuration, and monitoring of infrastructureand applications using modern tools and technologies.· Implement and enforce security controls and best practices throughoutthe software development lifecycle.· Conduct regular security assessments, vulnerability scans, andpenetration tests to identify and address potential securityvulnerabilities.· Ensure compliance with industry standards and regulatory requirementsrelated to security and privacy.· Integrate security tools and practices, such as static analysis,dynamic analysis, and container security, into the CI/CD pipeline.· Monitor and respond to security incidents and alerts, coordinatingwith relevant teams to implement timely solutions.· Provide technical expertise and guidance to development andoperations teams on security best practices and risk mitigationstrategies.· Stay up-to-date with emerging security threats and vulnerabilities,and proactively recommend solutions to address potential risks.· Collaborate with the development team to ensure that security isincorporated into the design and architecture of applications.· Participate in code reviews, identify security flaws, and suggestremediation strategies.· Document processes, procedures, and best practices to improve teamknowledge and efficiency.Required Skill/Qualifications· Proven experience as a DevSecOps Engineer, Security Engineer, orsimilar role.· MUST HAVE experience with Node.js, npm, and yarn.· Experience with DevSecOps, CI/CD, application modernization, and/orcloud-native application development will provide a useful context for thework that needs to be done.· Strong knowledge of DevOps principles and practices, as well assoftware development methodologies.· Familiarity with cloud computing platforms (e.g., AWS, Azure, GoogleCloud) and infrastructure-as-code (IaC) tools (e.g., Terraform,CloudFormation).· Experience with containerization technologies such as Docker andKubernetes.· Proficiency in scripting and automation using languages such asPython, PowerShell, or Bash.· Knowledge of security frameworks and compliance standards (e.g.,NIST, CIS, OWASP).· Hands-on experience with security tools such as vulnerabilityscanners, intrusion detection systems, and log analysis tools.· Strong problem-solving skills and the ability to analyze complextechnical issues.· Excellent communication skills to collaborate with both technical andnon-technical stakeholders.· Relevant certifications such as Certified DevSecOps Engineer,Certified Information Systems Security Professional (CISSP), or equivalent,are a plus.Education· Bachelor’s degree in computer science, Information Technology, or arelated field.· Equivalent practical experience will also be considered. Show more Show lessTagged as: remote, remote job, virtual, Virtual Job,virtual position, Work at Home, work from home