DevSecOps Engineer

Title: DevSecOps Engineer Find out exactly what skills, experience, and qualifications you will need to succeed in this role before applying below.Location: Dallas, TX (Hybrid 2/3)Duration: 6+ monthsCompensation: $55.00 - 60.00/hrWork Requirements: US Citizen, GC Holders or Authorized to Work in the U.S.DevSecOps EngineerSummary:As a DevSecOps Engineer, you will play a pivotal role in shaping our software development lifecycle by integrating security practices seamlessly into our processes. Your technical expertise and leadership will drive the implementation of robust CICD (Continuous Integration and Continuous Deployment) patterns while adhering to industry standards and policies. You'll collaborate with cross-functional teams, ensuring that our applications are secure, reliable, and efficiently deployed. Here's an overview of your responsibilities:Duties and Responsibilities Design and implement secure, scalable solutions to address infrastructure and security requirements. Champion DevSecOps practices, integrating security seamlessly into the SDLC with tools like SAST/DAST solutions and Infrastructure as Code (IaC) scanning (e.g., Prisma Cloud, SonarQube). Identify and implement opportunities for pipeline automation and optimization, driving efficiency and speed. Embrace Infrastructure as Code (IaC) using tools like Terraform and Kubernetes to automate and manage multi-cloud deployments (e.g.: AWS, Azure). Lead the containerization charge, leveraging Docker and Helm 3 for efficient application packaging and deployment. Strong understanding of security concepts, including threat modeling, risk assessment, and vulnerability management Proficiency in automation tools, configuration management, and continuous integration and deployment (CI/CD) pipelines. Familiarity with tools like GitHub Actions, ArgoCD, Terraform. Expertise in cloud security principles, including secure architecture design and configuration management. Familiarity with popular cloud platforms like AWS, Microsoft Azure • Implement state-of-the-art artifact management solutions for secure storage and distribution (e.g., Artifactory, Nexus.) Implement and maintain robust monitoring solutions (e.g., Prometheus, Grafana) to gain deep insights into application and infrastructure health. Integrate and leverage a SIEM tool (Splunk or similar) to collect, analyze, and correlate security-related data from various sources for advanced threat detection and incident response. Possess a strong understanding of web server configuration and management (e.g., Apache, Nginx) for optimal performance and security. Possess a strong foundation in Unix/Linux administration, including scripting (Bash), user and permission management, and system troubleshooting. Foster a collaborative environment, working closely with development, security, and operations teams to ensure seamless software delivery. Stay ahead of the curve by researching and integrating the latest DevSecOps trends and methodologies. Share your expertise through internal training and knowledge sharing sessions. Develop and maintain clear documentation for DevSecOps processes and tools, ensuring consistency and knowledge transfer. Troubleshoot and resolve complex issues within the CI/CD pipeline and cloud deployments. Keep incident tracking tools updated and document discoveries and concerns. Proactive approach to identify and mitigate security risks Champion agile methodologies within the DevSecOps workflow, ensuring continuous integration, delivery, and feedback loops. Align with Systems/Software Development Life Cycle (SDLC) processes and industry-standard service management principles (such as ITIL). Understanding cloud security principles, including secure architecture design and configuration management Familiarity with API Security, Container Security Experience with cloud technologies for cloud DevSecOpsMinimum Qualifications Bachelor's degree in Computer Science or Information Technology field 4+ years of experience in DevSecOps principles and practices. Proven track record of designing and implementing secure, automated CI/CD pipelines with modern tools (GitOps, GitHub Actions etc.) Deep understanding of Infrastructure as Code (IaC) tools (Terraform, Kubernetes) and multi-cloud environments (AWS, Azure, GCP). Deep understanding knowledge of containerization technologies (Docker, Helm). Experience with next-generation artifact management solutions (Artifactory, JFrog). Experience integrating security best practices and tools (SAST/DAST, IaC scanning) into the SDLC. Familiarity with API Security, Container Security, and AWS Cloud Security. Knowledge of Prisma Cloud, SIEM, SOC, Nessus, CrowdStrike, or similar services. Excellent communication, collaboration, and problem-solving skills. Ability to thrive in a fast-paced, dynamic environment. Strong scripting skills (Python, Go, Bash). Delivers Results Teamwork & Collaboration Effective communication Excellent verbal/written communication skills Ability to analyze and solve problems Strong attention to detailPreferred Qualifications Possess expert level industry certification(s) in Azure/AWSSpecialized Skills and Technologies Kubernetes Docker Terraform Helm Prisma Cloud / SonarQubePhysical Demands Physical demands with activity or condition for a considerable amount of time include sitting and typing/keyboarding using a computer (e.g., keyboard, mouse, and monitor) or adding machine Physical demands with activity or condition may include occasional to rare amount of time include walking, bending, reaching, standing, and stooping May require occasional lifting/lowering, pushing, carrying, or pulling up to 20lbs Our benefits package includes: Comprehensive medical benefits Competitive pay 401(k) Retirement plan ...and much more! About INSPYR SolutionsTechnology is our focus and quality is our commitment. As a national expert in delivering flexible technology and talent solutions, we strategically align industry and technical expertise with our clients' business objectives and cultural needs. Our solutions are tailored to each client and include a wide variety of professional services, project, and talent solutions. By always striving for excellence and focusing on the human aspect of our business, we work seamlessly with our talent and clients to match the right solutions to the right opportunities. Learn more about us at . INSPYR Solutions provides Equal Employment Opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, INSPYR Solutions complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities.

Created: 2025-03-06