Job Description
• At least 12 years of experience as a DevSecOps Architect or similar role, with a focus on integrating security into the software development lifecycle.
• Strong experience architecting, designing, and building DevSecOps solutions at scale, in the cloud, across multiple classification domains (IL5 to IL6+) simultaneously
• Expert understanding of DevOps practices, CI/CD pipelines, and automation tools (e.g., Jenkins, GitLab CI/CD, Artifactory, SonarQube, Selenium).
• Expert-level experience with infrastructure as code (IaC) tools such as Terraform, CloudFormation, or Ansible.
• Familiarity with cloud platforms (e.g., AWS, Azure, GCP) and securing cloud-based applications and services.
• Strong understanding of containerization and orchestration technologies (e.g., Docker, Kubernetes, OpenShift, EKS) and securing containerized applications.
• Hands-on experience with security tools for static code analysis, dynamic application security testing (DAST), and vulnerability scanning, using tools such as Fortify, Acunetix, and Prisma Cloud
• Proficiency in scripting languages (e.g., Python, Bash) for automation and tool integration.
• Knowledge of security best practices, common vulnerabilities, and exposure to security frameworks (e.g., OWASP, NIST).
• Strong problem-solving skills and the ability to work effectively in a fast-paced, collaborative environment.
• Excellent communication skills, both written and verbal, with the ability to convey complex security concepts to technical and non-technical stakeholders
• Cloud certifications such as AWS Solutions Architect Associate/Professional, AWS SysOps Administrator, AWS Developer, or AWS DevOps Engineer
• Active TS/SCI Clearance with CI poly
• Current certifications to meet 8140/8570 standards (e.g. Security+ or above)
• Experience with low-to-high development models and associated tooling
• Experience with Microsoft Azure or Google Cloud Platform (GCP).
