The SpyGlass Group, LLC

DevSecOps Architect – CONTRACT

The SpyGlass Group, LLC

contract

Posted on:

Location Type: Remote

Location: MassachusettsUnited States

Visit company website

Explore more

AI Apply
Apply

Tech Stack

AzureCloudSDLC

About the role

  • Stand up a greenfield GitHub Enterprise Cloud environment and define scalable org/team/repo governance.
  • Establish practical standards (repo setup, branching, PR controls, lifecycle management) that support secure innersource collaboration.
  • Integrate with Azure Entra for SSO and enforce enterprise authentication and least privilege RBAC models.
  • Implement enterprise policies and audit logging/monitoring patterns to support oversight and compliance.
  • Reconnect or build a development + production pipeline aligned with secure SDLC practices and platform guardrails.
  • Plan and execute migration of one selected repository into GitHub Enterprise Cloud and validate integrity, permissions, and pipeline functionality.
  • Enable GitHub Advanced Security (GHAS) (code scanning, secret scanning, dependency review/policies) and define basic governance/triage expectations.
  • Enable GitHub Copilot and deliver a structured remote Copilot Hackathon experience for a small developer group.
  • Produce clear architecture/governance documentation and lead knowledge transfer so the client can operate the platform post engagement.

Requirements

  • Senior experience implementing enterprise DevSecOps platforms and secure SDLC practices.
  • Hands-on administration/governance experience with GitHub Enterprise Cloud, including org/repo/team design and policy controls.
  • Experience implementing GitHub Advanced Security (GHAS) and operationalizing scanning/alerts in real teams.
  • Strong CI/CD background (GitHub Actions and/or external CI tools), with ability to design secure build and deployment workflows.
  • Experience migrating repositories from legacy systems (e.g., Azure DevOps) into GitHub Enterprise Cloud.
  • Nice to Have: GitHub Exams such as GH-100 or GH-300, proven ability to lead technical workshops with security/architecture stakeholders and create high-quality documentation.
  • Familiarity with developer enablement approaches (hackathons, practical labs, adoption guides) for tools like GitHub Copilot.
  • Understanding of governance considerations for AI adjacent initiatives and data/security collaboration.
Benefits
  • High impact platform buildout: establish the foundation for secure software delivery and modernization.
  • Strong stakeholder visibility: work directly with security and architecture teams to set standards and guardrails.
  • Clear, outcome based scope: platform + one pilot migration + enablement + handover deliverables.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
GitHub Enterprise CloudDevSecOpssecure SDLCGitHub Advanced SecurityCI/CDGitHub Actionsrepository migrationRBACaudit loggingarchitecture documentation
Soft Skills
leadershipcommunicationknowledge transfercollaborationworkshop facilitation
Certifications
GH-100GH-300