Cybersecurity DevSecOps Engineer - Washington, United States - Astor & Sanders

Description

Washington, District of Columbia, United States

Astor & Sanders Corporation (Astor) is an award-winning IT solutions provider headquartered in McLean, VA and is seeking a

Cybersecurity DevSecOps Engineer.

This is a full-time position

onsite in DC area.
The Cybersecurity DevSecOps Engineer is a security-focused engineer dedicated to enhancing the security posture throughout the DevSecOps lifecycle
Drive the unification and automation of processes to enable development of software capability across the entire organization, instrumental in combining code, application maintenance, and application management
Define, implement, and maintain secure pipelines, promoting a culture of rapid and safe iteration
Design and refine scalable and reliable CI/CD processes with a security-first approach
Develop and enhance a robust build pipeline, automating secure build/artifact delivery and deployment
Use your expertise to identify and mitigate security risks, always prioritizing reasoning and facts
Collaborate with the existing team to integrate and improve upon current infrastructure with security best practices
Conduct threat modeling and risk assessments, ensuring that potential vulnerabilities are identified and addressed collaboratively
Lead and participate in security training and awareness initiatives for the development team
Develop and maintain an incident response plan, ensuring preparedness in the event of a security breach
Collaborate with other developers to address security concerns at the root and craft lasting solutions
Works actively with application development teams, DOL security/ISO, Infrastructure and other teams to coordinate and optimize the steps that execute within the DevOps ecosystem and bring consistency and security best practices in approach, tools, and standards
Additional duties as assigned
Requirements
5+ years of experience working as a Cybersecurity DevSecOps Engineer or similar role
Bachelor's degree in Computer Science, Cybersecurity, or related field
Must have Agile/SAFe, and other related developer certifications and or demonstrate equivalent experience
Experience building DevSecOps services in IaaS/PaaS/SaaS in Cloud (AWS, Azure) environments and good understanding of their security considerations
Familiarity with containerization and orchestration tools like Docker and Kubernetes
Experience with CI/CD best practices, automated builds and tests, quality gates, software quality, and CI tools, i.e., Jenkins, Ansible, Terraform, etc
Experience with configuration management tools, i.e., Git, GitHub, GitLab, Bitbucket, others
Atlassian Confluence, GitLab/GitHub, Jenkins, and artifact repository experience
Familiarity with security coding standard best practices, static and dynamic scanning tools, i.e., SonarQube, Fortify, Coverity, PCLint, etc
Programming and scripting experience in a UNIX environment (Bash, Shell, PowerShell, Perl, Python, Bash, Ruby, Shell, Scripts)
Strong knowledge of cybersecurity principles and best practices
Experience with vulnerability assessment, scanning, and remediation
Astor & Sanders Corporation ) offers a unique, stimulating and challenging environment that fosters individual growth and rewards performance. Astor & Sanders Corporation (Astor) is an Equal Opportunity Employer.

Some of our competitive benefits include:
Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.

#J-18808-Ljbffr