Credence

DevSecOps Engineer

Credence

full-time

Posted on:

Location Type: Hybrid

Location: McLeanVirginiaUnited States

Visit company website

Explore more

AI Apply
Apply

Job Level

SeniorLead

Tech Stack

AnsibleAWSCloudCyber SecurityDockerJenkinsKubernetesPythonSDLCSplunkTerraform

About the role

  • AWS GovCloud Architecture & Management: Design, implement, and maintain secure, scalable, and compliant AWS GovCloud environments for DoD and Civilian agency applications.
  • DevSecOps Pipeline Development: Build and optimize CI/CD pipelines using tools like GitLab CI/CD, Jenkins, AWS Code Pipeline, and Terraform to automate deployments and security compliance.
  • Security & Compliance: Ensure adherence to Federal cybersecurity frameworks (e.g., NIST 800-171, NIST 800-53, RMF, FedRAMP, Zero Trust). Implement STIGs, security baselines, and automated security scanning (SAST/DAST).
  • Infrastructure as Code (IaC): Automate infrastructure provisioning and configuration management using Terraform, CloudFormation, and Ansible.
  • Containerization & Orchestration: Deploy and manage Docker containers and Kubernetes clusters in AWS GovCloud, leveraging services like Amazon EKS, ECS, and Fargate.
  • Monitoring & Incident Response: Implement AWS CloudWatch, AWS Security Hub, GuardDuty, Splunk, or ELK for proactive monitoring, logging, and compliance reporting.
  • Automation & Scripting: Develop automation scripts using Python, Bash, or PowerShell to improve deployment efficiency and security enforcement.
  • Collaboration & Knowledge Sharing: Work closely with software developers, cybersecurity teams, and cloud engineers to integrate security and automation into the software development lifecycle (SDLC).

Requirements

  • US citizenship with the ability to obtain successful DoD secret security clearance required
  • Security+, AWS Certified Security
  • 7+ years of hands-on experience in DevSecOps, Cloud Engineering, or Infrastructure Automation roles.
  • Strong expertise in AWS GovCloud services, security configurations, and compliance frameworks.
  • Experience with CI/CD tools (GitLab CI/CD, Jenkins, AWS Code Pipeline, or similar).
  • Hands-on experience with Infrastructure as Code (IaC) using Terraform, CloudFormation, and Ansible.
  • Proficiency in containerization and orchestration (Docker, Kubernetes, EKS, ECS, Fargate).
  • Strong understanding of AWS security services (AWS IAM, GuardDuty, Security Hub,AWS KMS, AWS WAF, AWS Config, AWS Secrets Manager).
  • Knowledge of federal cybersecurity frameworks (RMF, NIST 800-171/53, STIGs, ZeroTrust).
  • Experience implementing automated security testing (SAST, DAST, vulnerability scanning, SBOM management).
  • Proficiency in scripting (Python, Bash, PowerShell) for automation and security enforcement.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
AWS GovCloud ArchitectureDevSecOpsCI/CD pipelinesInfrastructure as CodeContainerizationOrchestrationAutomation scriptingSecurity complianceAutomated security testingVulnerability scanning
Soft Skills
CollaborationKnowledge sharing
Certifications
Security+AWS Certified Security