Development InfoStructure LLC., (DEVIS) provides exceptional DevSecOps integration in our agile software development and embedded software solutions, combined with comprehensive IT management and consulting services to our federal, state, and local governments. The outcomes of our research and development, products and universe of services will support the international development community, multiple civilian agencies and the nation’s defense and intelligence communities. Our focused research, services and products include complex DevSecOps solutions to support refugee processing across multiple federal agencies, research and development for Signal Intelligence (SIGINT), Command, Control, Communications, Computers and Intelligence (C4I), Data Analytics, and Intelligence, Surveillance and Reconnaissance (ISR) development and sensor capabilities supporting both the aerospace/defense and intelligence communities, as well as complex HHS comprehensive care coding requirements, and integrated management systems for our countries civilian agencies (FAA, FDIC, HOR, etc.).

Our primary mission is to best serve the needs of our clients by solutioning with our stakeholder teams to ensure that the goals and objectives of our customers are proactively solutioned, such that opportunities to invest our time in developing long-term solutions and assets are abundant and move our clients forward efficiently.

At DEVIS, we are enthusiastic about our research, our work and embracing an environment where all are supported in the mission, while maintaining a healthy work-life balance.

Overview

We are seeking a talented DevSecOps Engineer with expertise in AWS cloud capabilities to join our team contingent upon contract award. As a DevSecOps Engineer, you will play a critical role in integrating security practices into our software development and deployment processes. You will leverage your AWS cloud specialization to design, implement, and maintain secure and scalable infrastructure that supports our applications.

Responsibilities

• Collaborate with development, operations, and security teams to integrate security best practices into the software development lifecycle (SDLC) and DevOps processes.

• Design, implement, and maintain secure AWS cloud infrastructure using services such as EC2, S3, RDS, Lambda, IAM, and others.

• Implement and automate security controls, including identity and access management (IAM), encryption, network security, and logging, using AWS-native tools and third-party solutions.

• Configure and manage CI/CD pipelines using tools like Jenkins, AWS CodePipeline, or GitLab CI/CD, integrating security testing and vulnerability scanning into the deployment process.

• Monitor and analyze cloud infrastructure and application logs for security incidents and anomalies, responding promptly to mitigate risks and maintain compliance with security standards.

• Conduct regular security assessments and audits of cloud resources, identifying vulnerabilities and recommending remediation measures to ensure compliance with industry regulations and best practices.

• Stay current with AWS security features, updates, and best practices, evaluating and implementing new technologies and techniques to enhance security posture.

• Provide guidance and support to development teams on secure coding practices, application security architecture, and vulnerability management.

  Required Skills and Qualifications

• 3-5 years Proven experience as a DevSecOps Engineer or similar role, with expertise in implementing security practices in cloud environments, particularly AWS.

• AWS certification(s) such as AWS Certified Security – Specialty, AWS Certified DevOps Engineer – Professional, or AWS Certified Solutions Architect – Professional preferred.

• Strong understanding of cloud computing principles and AWS services, with hands-on experience in designing, deploying, and managing cloud infrastructure.

• Proficiency in infrastructure-as-code (IaC) tools such as Terraform or AWS CloudFormation for automating infrastructure provisioning and configuration.

• Experience with containerization technologies such as Docker and container orchestration platforms like Kubernetes, with a focus on security best practices.

• Familiarity with security frameworks and standards such as NIST, CIS, and PCI DSS, and experience implementing security controls to meet compliance requirements.

• Excellent problem-solving and analytical skills, with the ability to assess complex security issues and recommend practical solutions.

• Strong communication and collaboration skills, with the ability to work effectively with cross-functional teams and stakeholders.

• Self-motivated and proactive, with a passion for continuous learning and staying current with emerging technologies and security trends.

• Demonstrated Knowledge and Experience with the Centers for Medicare and Medicaid Services (CMS)

   

  Clearance Requirements

• This role requires the hired candidate to go through public clearance.

• A minimum of 3 years of stay in the U.S. within the last 5 years is a must to be eligible to qualify for public trust clearance sponsorship.

  Education / Certifications

Bachelor's degree in Computer Science, Information Security, or a related field.

Devis is an AA/EOE/M/F/Disabled/VET Employer committed to providing equal employment opportunity without regard to an individual’s race, color, religion, age, gender, sexual orientation, veteran status, national origin or disability.

Powered by JazzHR