Sr. DevSecOps Engineer

Fidelity & Guaranty Life Insurance Company•Des Moines, IA

3d•Hybrid

About The Position

The Senior DevSecOps Engineer will play a pivotal role in designing, implementing, and maintaining CI/CD pipelines and security practices within both our software development and cloud infrastructure-as-code processes. This position focuses on practical, hands-on responsibilities in DevSecOps, collaborating closely with both IT operations teams and application services to enhance tooling and methodologies. The DevSecOps engineer will play a role in the architecture and design of the infrastructure for cloud-native applications and systems and will make recommendations on implementation approaches.

Requirements

4-7 years of experience in DevSecOps or cloud software delivery, with technical expertise in tools like GitHub, Ansible, Terraform, JFrog, and SonarCloud.
Strong familiarity with cloud environments, particularly Azure Cloud, and container orchestration tools like Docker and Kubernetes.
Experience in implementing and managing security in cloud environments, and familiarity with security standards like CIS, SOX, and PCI-DSS
Strong technical skills and reasoning are required for this position.
Strong expertise in syntax of tools utilized in DevSecOps processes, such as git, bash, PowerShell, HCL, and YAML
Experience in programming languages such as Java, Python, and C#
In-depth knowledge of CI/CD tools and version control systems.
Excellent analytical, problem-solving, and interpersonal skills.
Ability to communicate technical concepts effectively across various organizational levels.
Proactive in identifying and resolving issues, with a focus on security and risk management.

Nice To Haves

Experience using container orchestration tools preferred.
Certifications from recognized bodies (e.g., Cisco, CompTIA, Microsoft, DevOps Institute) are advantageous.
Knowledge and experience of application build processes and implementing automated testing.

Responsibilities

Design, develop, and implement solutions to integrate infrastructure and security requirements into the CI/CD pipeline and application environments in Azure.
Identify needs for build automation and implement CI/CD solutions using tools like GitHub Actions, Terraform, and Ansible.
Consult on DevSecOps requirements with a range of application and operations teams.
Develop reusable solutions and patterns for CI/CD pipelines, focusing on automation and system integration.
Troubleshoot and resolve issues in the DevSecOps domain, ensuring adherence to service SLAs.
Align DevSecOps practices with SDLC processes and ITIL principles.
Proactively assist the Application Support team in troubleshooting or remediating production issues, when necessary.
Participate in design and code reviews, guiding project scoping to align with architectural goals and organizational requirements.
Ensure adherence to governance and control requirements.
Document DevSecOps processes and maintain the currency and integrity of DevSecOps platforms.
Perform other functions, duties and projects, as assigned.
Regular and punctual attendance.