DevSecOps Engineer

Responsibilities

We are seeking a highly skilled and experienced Sr. DevSecOps Engineer to spearhead the development of secure DevOps pipelines. This role is critical in ensuring that security is embedded throughout the software development lifecycle, from code to deployment. You will be the primary owner of our DevSecOps initiatives, collaborating with cross-functional teams and driving the adoption of secure development practices.

Job Duties:

Analyzes and defines security requirements to determine specifications and standards; proposes and develops secure solutions. Deploys and oversees implementation and integration of web-based applications, ensuring that appropriate information security standards are met. Maintains reports, logs, or other records of security audits. Monitors system security, uptime and performance, troubleshooting and resolving security vulnerabilities and errors. Stays informed of emerging cloud security technologies and evaluates their value to the organization's operations. Requires experience with cloud computing platforms, preferably AWS.

Responsibilities:

• Own and champion the organization's DevSecOps strategy and implementation
• Design, implement, and maintain secure CI/CD pipelines for both on-premises and cloud environments
• Develop security automation scripts and tools to standardize secure deployment processes and reduce manual intervention
• Create secure infrastructure as code (IaC) templates with embedded security controls
• Build comprehensive security monitoring and alerting solutions to ensure system security posture
• Lead security collaboration with Application Engineers to understand security requirements and address challenges
• Document secure deployment architectures, security processes, and best practices for team consumption
• Establish security metrics and KPIs to measure security compliance and system reliability
• Take ownership of implementing security best practices across deployment pipelines and infrastructure
• Troubleshoot complex security deployment issues and provide solutions
• Research and evaluate new security technologies and tools that could improve our DevSecOps capabilities
• Provide technical security guidance and mentorship to Application Engineers on secure automation practices
• Create self-service tools for secure deployment, security monitoring, and vulnerability troubleshooting

Qualifications

Qualifications:

• 5+ years of experience in DevSecOps, Security Engineering, or similar roles
• 3+ years of hands-on experience with secure CI/CD tools (Jenkins, GitHub Actions, etc.)
• 3+ years of experience with secure infrastructure as code (Terraform, CloudFormation)
• 3+ years of AWS cloud services security experience (EC2, S3, RDS, ECS/EKS, IAM, etc.)
• 2+ years of secure configuration management experience (Ansible, Chef, Puppet)
• Strong security scripting skills (PowerShell, Bash, Python)
• Experience with secure containerization technologies (Docker, Kubernetes)
• Deep understanding of network infrastructure and security principles
• Experience with security monitoring and observability tools (Prometheus, Grafana, CloudWatch)
• Strong expertise in PKI and certificate management
• Knowledge of Windows and Linux security administration

Soft skills:

• Strong security problem-solving abilities and analytical thinking
• Excellent communication skills for cross-functional security collaboration
• Self-motivated with ability to work independently and as part of a security team
• Detail-oriented with focus on quality and security
• Adaptable to changing security priorities and technologies
• Ability to translate complex security concepts to various audiences
• Proactive approach to identifying and resolving potential security issues
• Commitment to continuous security improvement and learning
• Must be able to pass background checks for multiple states
• Ability to work in Bedford, MA office full-time
• Must be able to travel up to 15%