LCI-Lawinger Consultingposted 7 days ago
Full-time - Senior
Saint Cloud, MN
Professional, Scientific, and Technical Services
About the position
The Senior DevSecOps Engineer is responsible for designing, implementing, and maintaining secure, scalable, and resilient development and operational processes across the organization. This role drives a security-first culture, ensuring that both existing and emerging platforms adhere to best practices in security, compliance, and reliability. In partnership with software development, architecture, QA, and operations teams, the Senior DevSecOps Engineer empowers continuous integration and delivery (CI/CD) pipelines, automates processes, and provides technical leadership in secure coding, vulnerability assessment, and remediation. This role also serves as a trusted advisor to leadership and key stakeholders, sharing best practices and emerging trends in DevSecOps.
Responsibilities
- Lead the design, implementation, and maintenance of CI/CD pipelines that integrate security controls at every stage.
- Ensure automated testing, vulnerability scanning, and compliance checks are performed continuously.
- Establish and maintain a robust application and infrastructure security posture, including vulnerability scanning, threat modeling, and penetration testing.
- Collaborate with development teams to remediate identified security gaps promptly.
- Architect and maintain secure cloud environments in Azure, AWS, or Google Cloud.
- Champion best practices for container orchestration, including Kubernetes security, network segmentation, and secure container images.
- Advance automation efforts for provisioning, configuration management, and infrastructure deployment (IaC).
- Define and document standardized operating procedures (SOPs) for secure infrastructure deployment and maintenance.
- Partner with cross-functional teams-developers, QA, architects, and operations-to embed security and DevOps principles in the software development lifecycle (SDLC).
- Mentor and coach junior team members on DevSecOps best practices and emerging technologies.
- Implement centralized logging, monitoring, and alerting solutions to track system health and security events.
- Develop incident response processes and lead post-incident reviews to identify root causes and implement improvements.
- Ensure adherence to relevant security and regulatory standards (NIST CSF, SOC 2, ISO 27001, PCI-DSS, HIPAA, etc.).
- Develop and maintain security policies, standards, and guidelines in collaboration with management and other stakeholders.
- Keep abreast of emerging trends and technologies in DevSecOps, cloud security, and application security.
- Evaluate and integrate new tools, technologies, and processes to enhance security, reliability, and efficiency.
- Understand and consistently perform in accordance with ATS Mission, Vision, and Values.
- Support ATS' culture by aligning actions, behaviors, performance, and decisions in accordance with the Company's values as set forth in our All-Employee Competencies.
- Complete work responsibilities outside of normal business hours as needed and infrequent travel may be required.
- Perform other duties and responsibilities as assigned.
Requirements
- A four-year degree in Computer Science, Software Engineering, Information Technology, or a related field.
- Five or more years of experience in DevOps, DevSecOps, or related roles.
- Deep knowledge of security tools and best practices, including vulnerability scanning, intrusion detection, and compliance frameworks (e.g., NIST CSF, SOC 2, ISO 27001, PCI-DSS, HIPAA).
- Strong background in cloud platforms (Microsoft Azure, AWS, or Google Cloud) with a focus on securing cloud infrastructure and services.
- Proficiency with containers (Docker, Kubernetes) and the secure configuration of containerized workloads.
- Experience with CI/CD pipelines (e.g., Jenkins, GitLab CI, GitHub Actions) and related automation tools.
- Familiarity with infrastructure-as-code tools (Terraform, Ansible, or CloudFormation) and their secure configurations.
- Experience with logging, monitoring, and alerting solutions (e.g., ELK Stack, Prometheus, Grafana) and best practices for security operations (SOC, SIEM, etc.).
- Strong understanding of application security (OWASP Top Ten, secure coding practices, SAST/DAST).
- Advanced analytical, conceptual, and creative problem-solving abilities.
- Ability to translate complex security or DevOps requirements into actionable solutions.
- Solid experience in generating standardized documentation for DevSecOps processes and best practices.
- Must be self-motivated, work independently, and be a team player amenable to a variety of work projects.
- Must maintain a high level of confidentiality.
- Must be able to demonstrate a proactive commitment to ATS corporate values and the success of all staff.
- Excellent interpersonal and communication skills (written, listening, and verbal).
- Willing and able to travel occasionally, including overnight travel.
Hard Skills
Ansible
1
Github
1
Gitlab
1
Jenkins
1
Kubernetes
1
0UQYpIn zute3bA
0
5ThMARvFgmf 07kTQn5vw3tc
0
7FKMSb6sZ Chvjt6VoSwiJ
0
7l0SB zRQKsv6FqPB
0
BQk7Zs3V
0
C4OLvkH38 bHyWdqjXm8xun
0
DGtvFbrWw9d1HQ sDZFvxYz6d1a
0
EAhxCuYQHntl53 x1FTlmYH DEM7 yb7rpUxj2w4h
0
F1ksbIV plB62iy
0
HgOcmqMhy YVECujSIAb
0
IHilcYQ843
0
Iu9qp0ZwychL S2xNhs5XT
0
JNs6KqvTFUY 4ZbLiypoX
0
JxiWXBPhc HV4hYzcOp
0
LWaUxMZOkSgE yFHYGl3v
0
MO54ov
0
NhKgX7jWcQ6yms s1NXChBjKOwU
0
Ownp jw5ub6A0RlZ
0
Q81fOBh
0
RLTuxHVtrfMF CMsrv7mof9T
0
RNCWapThDeL6i5H lCNSEzvQ7
0
RnvShqebDy8
0
S94pDT 3OqFlbLIi
0
Sa3kieL5CKTNEn4 s6Z9ipA1m
0
TJ8Hjd fR2cH5Qak
0
TXuvA8Zo QgA7EHU3hDWXF
0
XBenhjkoW6TO 0bJpFZCxH2D
0
XifTUyL58 3UiHImQRc
0
ZAxNM1X mfsz4J NB6Wy4UiK
0
ap3TexU4F RIyOvCsMge krQBqycYdb
0
eu5jCN2vt t8OMX1Pv5WLp
0
kO1xmBDAnQ P2WqSvJgZ
0
rTozE2BSW OSt1NnlDj
0
rVyoNuldP5mbJUX iP5 7q4LK
0
rXLv1KWEn5A8dm Zh0fg1neICcTGxu
0
rZK05I1msP9u7A PFvNgk2nThm
0
sLnc7glQxTbVzv 8i41AHpY0
0
vqfCtNG8Mi mncwD0baX2E
0
xcyfQWIaZd oh2cNe
0
yGzvOT4 w2RD4doTi
0
yKUVPxX pTwSqEud
0
Soft Skills
YBceFA649578OCib
0
xM4JHyeg k4y36iqU
0
A Smarter and Faster Way to Build Your Resume