DevSecOps Engineer

Jobgether

3d•Remote

About The Position

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a DevSecOps Engineer in United States. This role is responsible for embedding security practices throughout the software development lifecycle, ensuring that applications and infrastructure are secure, compliant, and resilient. The DevSecOps Engineer will collaborate across development, operations, and security teams to streamline CI/CD pipelines, automate compliance checks, and manage cloud and containerized environments. You will design and implement scalable infrastructure, enforce secure coding standards, and integrate automated security testing tools to protect applications at every stage. This position is ideal for professionals who thrive at the intersection of development, operations, and security, and who are passionate about building reliable, secure, and efficient systems in a cloud-native environment. Success in this role directly contributes to faster, safer software delivery and robust operational resilience.

Requirements

4+ years of experience in DevSecOps, Security Engineering, or Cloud Security.
Strong knowledge of CI/CD tools such as Jenkins, GitLab CI/CD, or Azure DevOps.
Hands-on experience with cloud platforms (AWS, Azure, GCP) and container orchestration (Docker, Kubernetes).
Proficiency in programming/scripting languages such as Python or Java.
Experience with security automation, vulnerability management, and regulatory compliance (ISO 27001, NIST, HIPAA, GDPR, PCI DSS).
Familiarity with GitOps tools (Flux, ArgoCD) and virtualization technologies (VMware, OpenStack).
Certifications preferred: CKAD, CKA, AWS/Azure/GCP Security, Certified DevSecOps Professional (CDP), or Certified Kubernetes Security Specialist (CKS).
Ability to obtain a Public Trust clearance and meet U.S. residency requirements.

Responsibilities

Design, implement, and maintain secure CI/CD pipelines, embedding automated security checks and compliance processes.
Integrate application security testing tools (SAST, DAST, SCA) into development workflows.
Collaborate with developers to enforce secure coding practices and DevSecOps standards.
Manage and secure cloud environments across AWS, Azure, or GCP, ensuring best practices for containerized workloads (Docker, Kubernetes).
Implement Infrastructure as Code (IaC) using Terraform, Ansible, or CloudFormation for secure provisioning.
Monitor, troubleshoot, and optimize systems, pipelines, and cloud resources to ensure reliability and performance.
Provide guidance, training, and support to teams on DevSecOps methodologies, security best practices, and compliance.