DevSecOps Engineer

DEVSECOPS ENGINEER 12 MONTHS CONTRACT HARTFORD, CONNECTICUT 100% REMOTE OPPORTUNITY VISA- USC/GC ONLY WILL CONVERT TO PERM AFTER 12 MONTHS The DevSecOps Engineer - Cloud Migrations This role will play a crucial part in blending DevOps and governance practices to enhance the security of our continuously growing cloud footprint. The individual must have worked in an Enterprise environment that includes experience supporting multi-account, multi-cloud services. This expert will help the team to achieve our goals of: Keeping our cloud environments secure & compliant. Quick & seamless security alignment on M&A projects. Shifting security left for a seamless development experience. Key Responsibilities: Risk Remediation on Cloud Migrations: Transfer ownership and merge cloud platforms from multiple acquisitions. Roll-out security monitoring and controls to newly acquired cloud accounts. Implement critical mitigation plans and hot fixes from findings. Create cost and security reports partitioned by business unit. Secure Software Development Lifecycle: Serve as the technical owner of our GitHub Enterprise tenant. Manage the configuration of GitHub & the Advanced Security features. Develop and maintain CI/CD pipelines with reusable GitHub Actions templates for various cloud deployment patterns. Collaborate with development teams to ensure consistent and secure application deployments. Cloud Governance and Guardrails: Configure and manage AWS Service Control Policies (SCPs) Establish and maintain governance practices to monitor cloud resources. Partner with Incidence Response team to customize WIZ integration. Compliance Dashboard and Alerting: Using the existing cloud-based security tooling, create and maintain compliance dashboards for tracking adherence to security standards and policies. Implement alerting mechanisms for timely response to compliance issues. Create meaningful metrics on the existing cloud security maturity that can be used to drive priorities. Qualifications: Knowledge of security best practices and compliance frameworks (HIPPA, SOX) Proven experience working with AWS and Azure cloud platforms. Strong proficiency in Terraform for infrastructure provisioning and automation. Expertise in scripting languages such as Python, Bash, or PowerShell. Hands-on experience with production deployments and troubleshooting. Familiarity with FinOps principles and practices. Excellent communication skills and the ability to collaborate with cross-functional teams. Nice to Have: Knowledge of AWS Security Hub, Microsoft Defender, WIZ Previous participation in security audits of cloud environments AWS Certifications - with equivalent experience Familiar with Active Directory/Azure AD/Azure AD Domain Services Understanding of Azure Virtual Desktop Services Education and Experience: 5+ years of hands-on experience to match the skills described above Degree in Computer Science, Cybersecurity, or equivalent industry experience

Created: 2024-11-12