DevSecOps Lead Engineer | Washington, DC (Hybrid Not 100% Remote) | Only W2

DevSecOps Lead Engineer | Washington, DC (Hybrid Not 100% Remote) | Only W2

Posted 4 days ago by 1758883491

Apply
Negotiable
Outside
Hybrid
USA
Apply
Amazon Elastic Compute Cloud Amazon Web Services (AWS) API Gateway Application Programming Interface (API) Automation AWS Identity And Access Management (IAM) AWS Lambda Azure Kubernetes Service Certified Data Professional (CDP) Cisco Discovery Protocol Cloud Computing Cloud Governance Cloud Technology Containerisation Continuous Integration and Continuous Delivery DevOps DevSecOps Embedding Infrastructure Automation Kubernetes Management Python (Programming Language) Secure Coding Software Coding Software Development SonarQube Terraform Workflows

Summary: The DevSecOps Lead Engineer role focuses on integrating security into cloud-native development and operations workflows. The ideal candidate will possess extensive knowledge of AWS services, infrastructure automation, and secure CI/CD practices. This position requires hands-on experience with AWS tools and a strong emphasis on embedding security throughout the software development lifecycle. The role is hybrid, requiring some on-site presence in Washington, DC.

Key Responsibilities:

  • Design and implement secure CI/CD pipelines using AWS Code Pipeline, Code Build, and Code Deploy.
  • Configure and manage blue/green deployments to ensure zero-downtime releases.
  • Automate infrastructure provisioning using Terraform and AWS CDK (Python).
  • Integrate security scanning tools (SAST, DAST, SCA) into build and deployment workflows.
  • Collaborate with development and operations teams to enforce secure coding and deployment standards.
  • Monitor, assess, and remediate vulnerabilities across applications and infrastructure.
  • Ensure compliance with security policies and cloud governance frameworks.
  • Maintain detailed documentation of security processes, configurations, and deployment strategies.

Key Skills:

  • Strong hands-on experience with AWS services, including Code Pipeline, Code Build, Code Deploy, IAM, EC2, Lambda, S3, CloudFormation, API Gateway.
  • Proficiency in Python for infrastructure automation using AWS CDK.
  • Solid experience with Terraform for infrastructure-as-code.
  • Familiarity with Bitbucket/GitHub for source control and pipeline management.
  • Knowledge of containerization and orchestration (Docker, Kubernetes).
  • Experience with security tools (Checkmarx, SonarQube, etc.).
  • Understanding of security frameworks (OWASP, NIST, CIS).

Salary (Rate): undetermined

City: Washington

Country: USA

Working Arrangements: hybrid

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Position: DevSecOps Lead Engineer
Location: Washington, DC (Hybrid Onsite required, not 100% remote)
Duration: Long Term Contract

Job Overview

We are seeking a highly skilled DevSecOps Lead Engineer to drive the integration of security into our cloud-native development and operations workflows. The ideal candidate will have deep expertise in AWS services, infrastructure automation, and secure CI/CD practices. This role requires strong hands-on skills in AWS Code Pipeline, Code Build, Code Deploy (including blue/green deployments), Terraform, and Python AWS CDK, along with proven experience in embedding security tools and frameworks across the SDLC.

Key Responsibilities

  • Design and implement secure CI/CD pipelines using AWS Code Pipeline, Code Build, and Code Deploy.
  • Configure and manage blue/green deployments to ensure zero-downtime releases.
  • Automate infrastructure provisioning using Terraform and AWS CDK (Python).
  • Integrate security scanning tools (SAST, DAST, SCA) into build and deployment workflows.
  • Collaborate with development and operations teams to enforce secure coding and deployment standards.
  • Monitor, assess, and remediate vulnerabilities across applications and infrastructure.
  • Ensure compliance with security policies and cloud governance frameworks.
  • Maintain detailed documentation of security processes, configurations, and deployment strategies.

Required Skills

  • Strong hands-on experience with AWS services, including:
    • Code Pipeline, Code Build, Code Deploy
    • IAM, EC2, Lambda, S3, CloudFormation, API Gateway
  • Proficiency in Python for infrastructure automation using AWS CDK.
  • Solid experience with Terraform for infrastructure-as-code.
  • Familiarity with Bitbucket/GitHub for source control and pipeline management.
  • Knowledge of containerization and orchestration (Docker, Kubernetes).
  • Experience with security tools (Checkmarx, SonarQube, etc.).
  • Understanding of security frameworks (OWASP, NIST, CIS).

Preferred Certifications

  • AWS Certified DevOps Engineer
  • Certified DevSecOps Professional (CDP)
  • CISSP or equivalent security certification

Soft Skills

  • Strong analytical and problem-solving abilities.
  • Excellent communication and cross-team collaboration skills.
  • Ability to work both independently and in dynamic, cross-functional teams.
  • Passion for automation, security, and continuous improvement.
Apply
Similar Jobs
Loading data...