What are the responsibilities and job description for the DevSecOps Engineer position at Ascendion?

About the job

About Ascendion

Ascendion is a full-service digital engineering solutions company. We make and manage software platforms and products that power growth and deliver captivating experiences to consumers and employees. Our engineering, cloud, data, experience design, and talent solution capabilities accelerate transformation and impact for enterprise clients. Headquartered in New Jersey, our workforce of 6,000 Ascenders delivers solutions from around the globe. Ascendion is built differently to engineer the next.

Ascendion | Engineering to elevate life

We have a culture built on opportunity, inclusion, and a spirit of partnership. Come, change the world with us :

Build the coolest tech for world’s leading brands
Solve complex problems – and learn new skills
Experience the power of transforming digital engineering for Fortune 500 clients
Master your craft with leading training programs and hands-on experience

Experience a community of change makers!

Join a culture of high-performing innovators with endless ideas and a passion for tech. Our culture is the fabric of our company, and it is what makes us unique and diverse. The way we share ideas, learning, experiences, successes, and joy allows everyone to be their best at Ascendion.

About the Role

Job Title : DevSecOps Engineer

Key Responsibilities :

Conduct DevSecOps assessments to evaluate the effectiveness of current security practices and identify areas for improvement.

Lead Product Security assessments, focusing on identifying security risks and proposing improvements in enterprise and mobile applications.

Analyze and improve the DevSecOps pipeline, ensuring that security practices are integrated seamlessly into the software development lifecycle (SDLC).

Collaborate with cross-functional teams to design and implement actionable security enhancements that align with NIST standards for Product Security.

Develop a comprehensive roadmap for DevSecOps program improvement, ensuring security best practices are embedded throughout the SDLC.

Identify gaps in the current DevSecOps program and propose solutions to strengthen security posture.

Ensure compliance with industry regulations and standards, such as GDPR, HIPAA, and PCI-DSS, and help integrate these requirements into DevSecOps practices.

Work closely with cloud teams to enhance Cloud security practices in AWS and GCP environments.

Leverage security tools to automate security testing, vulnerability assessments, and remediation processes within CI / CD pipelines.

Required Skills & Experience :

5 years of experience conducting DevSecOps assessments and working on Product Security initiatives.

Strong understanding of NIST standards for Product Security and their application in real-world enterprise systems.

Hands-on experience with Cloud technologies, specifically AWS and GCP, with a focus on implementing security best practices in cloud environments.

Deep understanding of the Software Development Lifecycle (SDLC) and integrating security into each phase.

Experience working in enterprise software development and mobile development, focusing on security considerations throughout the lifecycle.

Proficiency in integrating security tools into CI / CD pipelines and automating security checks within development workflows.

Familiarity with regulatory compliance frameworks such as GDPR, HIPAA, PCI-DSS, and other industry standards.

Strong problem-solving skills, with a focus on identifying and mitigating security risks in development and operational environments.

Excellent communication and collaboration skills to work with cross-functional teams and deliver security solutions effectively.

Preferred Skills (Bonus) :

Experience with security tools such as OWASP ZAP, Snyk, Fortify, Tenable, or similar.

Familiarity with containerization technologies like Docker and Kubernetes.

Experience with DevOps tools such as Jenkins, GitLab, Terraform, or similar.

Location : Richmond - VA ( Preferred Location; Hybrid Role; Needs to work 3 days from Office in a week); Can Consider at McLean - VA / Plano - TX / Chicago - IL / NYC - NY / Wilmington - DE.

Salary Range : The salary for this position is between $110,000– $120,000 annually. Factors which may affect pay within this range may include geography / market, skills, education, experience, and other qualifications of the successful candidate.

Benefits : The Company offers the following benefits for this position, subject to applicable eligibility requirements : [medical insurance] [dental insurance] [vision insurance] [401(k) retirement plan] [long-term disability insurance] [short-term disability insurance] [5 personal days accrued each calendar year. The Paid time off benefits meet the paid sick and safe time laws that pertains to the City / State] [10-15 days of paid vacation time] [6 paid holidays and 1 floating holiday per calendar year] [Ascendion Learning Management System]

Want to change the world? Let us know.

Tell us about your experiences, education, and ambitions. Bring your knowledge, unique viewpoint, and creativity to the table. Let’s talk!

Salary : $110,000 - $120,000

Apply for this job

Receive alerts for other DevSecOps Engineer job openings

DevSecOps Engineer

What are the responsibilities and job description for the DevSecOps Engineer position at Ascendion?

What is the career path for a DevSecOps Engineer?

Job openings at Ascendion

Not the job you're looking for? Here are some other DevSecOps Engineer jobs in the Richmond, VA area that may be a better fit.

We don't have any other DevSecOps Engineer jobs in the Richmond, VA area right now.

AI Assistant is available now!