What are the responsibilities and job description for the DevSecOps Engineer position at S2Technologies, LLC?
Location: Washington, DC Metro Area Clearance: Top Secret Experience: 12 years of demonstrable experience
Position Overview
We are seeking an experienced DevSecOps Engineer to join our team in the DC Metro Area. The ideal candidate will have 12 years of demonstrable experience implementing DevSecOps best practices, automating security within CI/CD pipelines, and managing cloud-native architectures, particularly in AWS environments. This role requires expertise in infrastructure as code (IaC), containerization, security automation, and continuous integration/deployment practices.
Key Responsibilities
S2 Technologies is dedicated to inclusivity and opportunity for all applicants. We ensure fair consideration for all qualified applicants and champion equal employment opportunities for disabled veterans. Applicants living in a HubZone designated area receive preferential selection when meeting all other required qualifications.
Position Overview
We are seeking an experienced DevSecOps Engineer to join our team in the DC Metro Area. The ideal candidate will have 12 years of demonstrable experience implementing DevSecOps best practices, automating security within CI/CD pipelines, and managing cloud-native architectures, particularly in AWS environments. This role requires expertise in infrastructure as code (IaC), containerization, security automation, and continuous integration/deployment practices.
Key Responsibilities
- Design, implement, and maintain secure CI/CD pipelines to automate software development and deployment.
- Integrate security controls, compliance checks, and vulnerability scanning into DevOps workflows.
- Utilize and optimize AWS cloud architecture to support resilient and scalable software deployments.
- Automate provisioning, configuration, and monitoring of cloud infrastructure using Infrastructure-as-Code (IaC) tools (Terraform, AWS CloudFormation, Ansible, etc.).
- Work with development, operations, and security teams to ensure secure coding practices and security-by-design principles are followed.
- Implement containerization and orchestration using Docker, Kubernetes, and AWS services like EKS or ECS.
- Conduct continuous monitoring, logging, and alerting using tools such as Splunk, ELK Stack, Prometheus, Grafana, or AWS CloudWatch.
- Ensure compliance with security frameworks (e.g., NIST, CIS, FedRAMP, DoD STIGs) and work on automation to enforce compliance.
- Troubleshoot system, application, and network security issues in development and production environments.
- Support incident response and remediation efforts when security vulnerabilities are identified.
- 12 years of demonstrable experience in DevSecOps, Cloud Security, or a related field.
- Strong experience with AWS cloud services (IAM, EC2, Lambda, S3, RDS, VPC, etc.).
- Proficiency in CI/CD tools (Jenkins, GitLab CI/CD, GitHub Actions, AWS CodePipeline, etc.).
- Hands-on experience with DevSecOps tools, including:
- Security: SonarQube, Snyk, Checkmarx, Twistlock, Anchore, or similar.
- Automation & IaC: Terraform, Ansible, AWS CloudFormation.
- Containerization: Docker, Kubernetes, Helm.
- Monitoring & Logging: Splunk, ELK, Prometheus, CloudWatch.
- Strong scripting and automation skills using Python, Bash, or PowerShell.
- Experience implementing zero-trust security models and identity management solutions.
- Familiarity with compliance frameworks (NIST 800-53, FedRAMP, DoD STIGs, CIS Benchmarks).
S2 Technologies is dedicated to inclusivity and opportunity for all applicants. We ensure fair consideration for all qualified applicants and champion equal employment opportunities for disabled veterans. Applicants living in a HubZone designated area receive preferential selection when meeting all other required qualifications.
