Flexion - Madison, WI
posted 29 days ago
Full-time - Mid Level
Remote - Madison, WI
Food Services and Drinking Places
About the position
The DevSecOps Engineer at Flexion will play a crucial role in supporting a modernization project within an agile software development environment. This position emphasizes collaboration within autonomous teams to deliver incremental business value while integrating security practices throughout the development lifecycle. The ideal candidate will possess strong problem-solving skills and technical expertise, contributing to a culture of transparency and continuous improvement.
Responsibilities
- Support modernization projects by implementing DevSecOps practices.
- Engage in interdisciplinary pairing and mobbing in a virtual office environment.
- Continuously integrate security and testing into the development process.
- Participate in open-source development with a focus on transparency.
- Design and implement Infrastructure as Code (IaC) solutions.
- Optimize CI/CD pipelines to include security integration.
- Lead threat modeling and security improvement initiatives.
- Automate security processes and perform remediation for Plan of Action and Milestones (POA&M).
Requirements
- 6+ years of combined Application Development/DevSecOps/Infrastructure Automation experience.
- Excellent understanding of DevSecOps practices and principles.
- Experience with AWS and/or Azure Cloud platforms.
- Proficiency in writing and implementing Infrastructure as Code (IaC).
- Experience in optimizing CI/CD pipelines with security integration.
- Knowledge of cloud security practices (AWS and/or Azure Gov).
- Experience in leading threat modeling and implementing security improvements.
Nice-to-haves
- Experience with GitOps/DevOps engineering.
- Proficiency in cloud platform management (AWS and Azure Gov).
- Strong background in web application security.
- Ability to lead security exercises and facilitate threat modeling.
- Familiarity with 'shift-left' security integration in development processes.
- Understanding of data security principles.
- Experience in creating and maintaining FISMA compliant systems.
- Knowledge of Federal Authority to Operate (ATO) process management.
Benefits
- Full-time position with flexible working arrangements.
- Opportunities for professional development and continuous learning.
