AWS DevSecOps Engineer SME
$176,000 - $282,000/Yr
Peraton - Herndon, VA
posted about 2 months ago
Full-time
Herndon, VA
Computing Infrastructure Providers, Data Processing, Web Hosting, and Related Services
About the position
The AWS DevSecOps Engineer SME is responsible for integrating security practices into DevOps processes within an AWS environment, ensuring the security, scalability, and reliability of cloud infrastructure. This role involves automating security controls, managing cloud environments, and implementing continuous integration/continuous deployment (CI/CD) pipelines, primarily supporting the Department of Homeland Security (DHS) and Transportation Security Administration (TSA).
Responsibilities
- Lead the integration of security practices into DevOps pipelines, ensuring robust security controls throughout the development lifecycle.
- Design and implement secure, scalable, and automated AWS cloud infrastructure.
- Architect, deploy, and maintain secure AWS cloud environments, ensuring compliance with industry standards.
- Build and optimize CI/CD pipelines using AWS services and third-party tools with integrated security testing and validation.
- Automate deployment processes for fast, reliable, and secure delivery of applications and infrastructure.
- Collaborate with cross-functional teams to embed security in all phases of the application lifecycle.
- Provide technical leadership and mentorship to junior engineers and DevSecOps practitioners, promoting best practices in automation, security, and cloud operations.
- Support development and operations teams with troubleshooting and resolving complex cloud, security, and performance issues.
Requirements
- U.S. Citizenship required; ability to obtain a DHS Entrance on Duty (EOD) clearance.
- Bachelor's degree and 16 years' experience, or Master's degree and 14 years' experience, or HS diploma/equivalent and 20 years' experience.
- Strong understanding of AWS services and architecture.
- Proficiency in scripting languages such as Python, Bash, or PowerShell.
- Experience with CI/CD tools like Jenkins, GitLab CI, or AWS Code Pipeline.
- Familiarity with containerization technologies like Docker and orchestration tools like Kubernetes.
- Knowledge of security frameworks and standards (e.g., NIST, CIS).
- Experience with security tools and practices such as vulnerability scanning, threat modeling, and penetration testing.
- Understanding of identity and access management (IAM) principles.
- Certified AWS Certified DevOps Engineer - Professional.
- Certified AWS Certified Security - Specialty.
- Must hold one of the following certifications: Certified Information Systems Security Professional (CISSP) or Certified Cloud Security Professional (CCSP).
